Vulnerability Details CVE-2024-22069
There is a permission and access control vulnerability of ZTE's ZXV10 XT802/ET301 product.Attackers with common permissions can log in the terminal web and change the password of the administrator illegally by intercepting requests to change the passwords.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.8%
CVSS Severity
CVSS v3 Score 7.1
Products affected by CVE-2024-22069
-
cpe:2.3:h:zte:zxv10_et301:*
-
cpe:2.3:h:zte:zxv10_xt802:*
-
cpe:2.3:o:zte:zxv10_et301_firmware:*
-
cpe:2.3:o:zte:zxv10_xt802_firmware:*