CVE-2026-44409— Information disclosure vulnerability in ZTE MU5250
Possible ATT&CK Techniques 1AI
T1005 · Data from Local SystemGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-44409
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Information disclosure vulnerability in ZTE MU5250
Source: NVD (National Vulnerability Database)
Vulnerability Description
There is an an information disclosure vulnerability in ZTE MU5250. Due to improper configuration of the access control mechanism, attackers can obtain information without authorization, causing the risk of information disclosure.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
信息暴露
Source: NVD (National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-44409
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-44409
请登录查看更多情报信息。
Vendor Pages for CVE-2026-44409 (1)
IV. Related Vulnerabilities
Same vendor: ZTE
- CVE-2026-44410
Function Abusement Vulnerability in ZTE ZXUniPOS NDS-LTE - CVE-2026-44408
Unauthorized access vulnerability in ZTE MU5250 - CVE-2026-44407
Remote Denial of Service Vulnerability Exists in ZTE Cloud P - CVE-2026-44406
DLL Hijacking Vulnerability in ZTE Cloud PC Client uSmartvie - CVE-2026-40004
openssl.cnf Privilege Escalation Vulnerability in ZTE Cloud
Same weakness: CWE-200
- CVE-2026-24198
NVIDIA GPU Display Driver for Linux Race Condition 漏洞 - CVE-2026-9352
NousResearch hermes-agent Messaging Gateway local.py _make_r - CVE-2026-9349
calcom cal.diy Generic React API bookings-single-view.getSer - CVE-2026-40166
authentik: Non-admin user can retrieve confidential OAuth cl - CVE-2026-3636
Sanitize team member data returned by API
V. Comments for CVE-2026-44409
No comments yet