CVE-2022-23135

Name of the Vulnerable Software and Affected Versions ZTE home gateway products (affected versions not specified)

Description The issue is related to a directory traversal vulnerability. It occurs due to the lack of verification of user-modified destination paths. An attacker with specific permissions could exploit this by modifying the FTP access path, allowing unauthorized access and modification of system path contents. This could lead to information leaks and affect device operation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.