PT-2025-54421 · Kztech · Kztech Jt3500V 4G Lte Cpe
Published
2025-12-31
·
Updated
2025-12-31
·
CVE-2021-47740
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
KZTech JT3500V 4G LTE CPE version 2.0.1
Description
The KZTech JT3500V 4G LTE CPE contains a flaw in its session management. This allows attackers to reuse previously valid session credentials because of improper session expiration. Successful exploitation could allow an attacker to maintain unauthorized access and compromise device authentication.
Recommendations
Update to a newer version that contains a fix for this vulnerability.
Exploit
Fix
Insufficient Session Expiration
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Kztech Jt3500V 4G Lte Cpe