CVE-2019-3416
CRITICALZTE ZXV10 B860A Firmware < 81511329.1008 - Unauthenticated Remote Code Execution
Title source: llmDescription
All versions up to V81511329.1008 of ZTE ZXV10 B860A products are impacted by input validation vulnerability. Due to input validation, unauthorized users can take advantage of this vulnerability to control the user terminal system.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1011263
Scores
CVSS v3
9.8
EPSS
0.0016
EPSS Percentile
36.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (1)
zte/zxv10_b860a_firmware
< 81511329.1008
Published
Sep 23, 2019
Tracked Since
Feb 18, 2026