📦

zxr10_160

Vendor: zte

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 38 Total Indexed

Avg. EPSS 0.72% Exploit Prob.

Latest CVE CVE-2024-22066 Oct 29

Security Vulnerability Index

Page 1 / 4

7.5 CVSS

CVE-2024-22066

There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the device.

EPSS: 0.29%

Severity: HIGH

Oct 29, 2024

6.0 CVSS

CVE-2024-22068

Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series on 64 bit allows Functionality Bypass.This issue affects ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series: V4.00.10 and earlier.

EPSS: 0.22%

Severity: MEDIUM

Oct 10, 2024

7.5 CVSS

CVE-2017-10931

The ZXR10 1800-2S before v3.00.40 incorrectly restricts the download of the file directory range for WEB users, resulting in the ability to download any files and cause information leaks such as system configuration.

EPSS: 1.29%

Severity: HIGH

Sep 19, 2017

9.8 CVSS

CVE-2017-10930

The ZXR10 1800-2S before v3.00.40 incorrectly restricts access to a resource from an unauthorized actor, resulting in ordinary users being able to download configuration files to steal information like administrator accounts and passwords.

EPSS: 1.08%

Severity: CRITICAL

Sep 19, 2017

Displaying 4 of 38 Total Entries

1 2 3 4

Total 4 Sections