CVE-2025-26709

MEDIUM

5.7

Beschreibung

There is an unauthorized access vulnerability in ZTE F50. Due to improper permission control of the Web module interface, an unauthorized attacker can obtain sensitive information through the interface

CVE Details

CVSS v3.1 Bewertung5.7

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AngriffsvektorADJACENT_NETWORK

KomplexitatLOW

Erforderliche PrivilegienLOW

BenutzerinteraktionNONE

Veroffentlicht8/15/2025

Zuletzt geandert8/15/2025

Quellenvd

Honeypot-Sichtungen0

Schwachen (CWE)

CWE-200

Referenzen

https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/1288700446535356789(psirt@zte.com.cn)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.