Vulnerability Details CVE-2025-66315
There is a configuration defect vulnerability in the version server of ZTE MF258K Pro products. Due to improper directory permission settings, an attacker can execute write permissions in a specific directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.9%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2025-66315
-
cpe:2.3:h:zte:mf258k_pro:-
-
cpe:2.3:o:zte:mf258k_pro_firmware:zte_mf258kpro_play_v1.0.0b03
-
cpe:2.3:o:zte:mf258k_pro_firmware:zte_mf258pro_std_v1.0.0b04