PT-2024-4337 · Zte · Zte Zxhn H388X

Published

2024-06-19

Updated

2024-06-20

CVE-2023-25646

CVSS v3.1

7.1

High

Vector

AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ZTE ZXHN H388X (affected versions not specified)

Description The issue is related to an unauthorized access vulnerability. It allows attackers with common user permissions to obtain elevated permissions on the affected device by performing specific operations, potentially through brute-force serial port cracking.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Preservation of Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-281

Related Identifiers

BDU:2024-04826

CVE-2023-25646

Affected Products

Zte Zxhn H388X

PT-2024-4337 · Zte · Zte Zxhn H388X

CVE-2023-25646

Weakness Enumeration

Related Identifiers

Affected Products

References · 7