CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-25642

There is a buffer overflow vulnerability in some ZTE mobile internet producsts. Due to insufficient validation of tcp port parameter, an authenticated attacker could use the vulnerability to perform a denial of service attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.1%

CVSS Severity

CVSS v3 Score 5.9

References

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1032504
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1032504

Products affected by CVE-2023-25642

Zte » Mc801a1 » Version: N/A

cpe:2.3:h:zte:mc801a1:-
Zte » Mc801a » Version: N/A

cpe:2.3:h:zte:mc801a:-
Zte » Mc801a1 Firmware » Version: mc801a1_elisa1_b04

cpe:2.3:o:zte:mc801a1_firmware:mc801a1_elisa1_b04
Zte » Mc801a Firmware » Version: mc801a_elisa3_b19

cpe:2.3:o:zte:mc801a_firmware:mc801a_elisa3_b19

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-25642

Products

Pricing

Contact Us