CVE Vulnerabilities

CVE-2022-23144

Published: Sep 23, 2022 | Modified: Aug 08, 2023
CVSS 3.x
9.1
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

There is a broken access control vulnerability in ZTE ZXvSTB product. Due to improper permission control, attackers could use this vulnerability to delete the default application type, which affects normal use of system.

Affected Software

Name Vendor Start Version End Version
Zxa10_b76hv3_firmware Zte * 2.01.02.01 (including)

References