CVE-2026-49000
7
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L
Summary
An insecure password scheme refers to vulnerabilities arising from improper selection of encryption algorithms, inadequate key management, or flawed code implementation, which may lead to data leakage or tampering, such as hard-coded keys or the use of weak encryption algorithms.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ZTE | ZXUniPOS NDS-LTE | Versions < V24.40.40CP01 (excluding V24.30.40CP03, V24.40.40CP01) | affected |
Weaknesses
- CWE-310: CWE-310 Cryptographic Issues
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.