The 7520V3V1.0.0B09P27 version, and all earlier versions of ZTE product ZX297520V3 are impacted by a Command Injection vulnerability. Unauthorized users can exploit this vulnerability to control the user terminal system.
References
Link | Resource |
---|---|
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1011643 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2019-10-31 09:15
Updated : 2020-08-24 10:37
NVD link : CVE-2019-3421
Mitre link : CVE-2019-3421
JSON object : View
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Products Affected
ztw
- zx297520v3_firmware
- zx297520v3