CVE-2019-3425

The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by vulnerability of permission and access control. An attacker could exploit this vulnerability to directly reset or change passwords of other accounts.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zte:zxupn-9000e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zte:zxupn-9000e:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-11-08 19:15

Updated : 2024-02-04 20:39


NVD link : CVE-2019-3425

Mitre link : CVE-2019-3425

CVE.ORG link : CVE-2019-3425


JSON object : View

Products Affected

zte

  • zxupn-9000e_firmware
  • zxupn-9000e
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource