CVE-2024-22066
HIGHDescription
There is a privilege escalation vulnerability in ZTE ZXR10 ZSR V2 intelligent multi service router . An authenticated attacker could use the vulnerability to obtain sensitive information about the device.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| zte | zxr10_1800-2s_firmware |
| zte | zxr10_1800-2s |
| zte | zxr10_2800-4_firmware |
| zte | zxr10_2800-4 |
| zte | zxr10_3800-8_firmware |
| zte | zxr10_3800-8 |
| zte | zxr10_160_firmware |
| zte | zxr10_160 |
References
Frequently Asked Questions
What is CVE-2024-22066? +
How severe is CVE-2024-22066? +
What products are affected by CVE-2024-22066? +
How do I check if I'm vulnerable to CVE-2024-22066? +
Related Vulnerabilities
The Wertheim SafeController 5400, Controller 5400 - AssemblyVersion 6.11.8130.22320, uses RS-485 communication between the server and the microcontroller without cryptographic …
SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with …
Use of fixed learning codes, one code to lock the car and the other code to unlock it, the Key …
Use of fixed learning codes, one code to lock the car and the other code to unlock it, in the …
Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a …
A weakness identified in OpenText Advanced Authentication where a Malicious browser plugin can record and replay the user authentication process …