Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
All versions up to ZXINOS-RESV1.01.43 of the ZTE ZXIN10 product European region are impacted by improper access control vulnerability. Due to improper access control to devcomm process, an unauthorized remote attacker can exploit this vulnerability to execute arbitrary code with root privileges.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
ZTE ZXIN10 输入验证错误漏洞
Vulnerability Description
ZTE ZXIN10是中国中兴通讯(ZTE)公司的一套综合智能网系统。该系统主要为固定网用户、GSM和CDMA移动网用户以及寻呼网用户提供跨网络的智能网业务。 ZTE ZXIN10 ZXINOS-RESV1.01.43及之前版本(欧洲地区)中存在输入验证漏洞,该漏洞源于程序没有对devcomm进程执行正确的访问控制。远程攻击者可利用该漏洞以root权限执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A