CVE-2022-23139

Name of the Vulnerable Software and Affected Versions ZTE ZXMP M721 product (affected versions not specified)

Description The issue concerns a permission and access control vulnerability. The folder permission viewed by sftp is 666, which is inconsistent with the actual permission. This inconsistency can lead to low-authority accounts obtaining higher operating permissions on key files, as users may overlook the modification of the file permission configuration.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.