CVE Vulnerabilities

CVE-2022-23144

Published: Sep 23, 2022 | Modified: May 22, 2025
CVSS 3.x
9.1
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

There is a broken access control vulnerability in ZTE ZXvSTB product. Due to improper permission control, attackers could use this vulnerability to delete the default application type, which affects normal use of system.

Affected Software

Name Vendor Start Version End Version
Zxa10_b76hv3_firmware Zte * 2.01.02.01 (including)

References