First published: Mon Jul 20 2020(Updated: )
The server management software module of ZTE has an authentication issue vulnerability, which allows users to skip the authentication of the server and execute some commands for high-level users. This affects: <R5300G4V03.08.0100/V03.07.0300/V03.07.0200/V03.07.0108/V03.07.0100/V03.05.0047/V03.05.0046/V03.05.0045/V03.05.0044/V03.05.0043/V03.05.0040/V03.04.0020;R8500G4V03.07.0103/V03.07.0101/V03.06.0100/V03.05.0400/V03.05.0020;R5500G4V03.08.0100/V03.07.0200/V03.07.0100/V03.06.0100>
Credit: psirt@zte.com.cn
Affected Software | Affected Version | How to fix |
---|---|---|
Zte R8500g4 Firmware | =03.05.0020 | |
Zte R8500g4 Firmware | =03.05.0400 | |
Zte R8500g4 Firmware | =03.06.0100 | |
Zte R8500g4 Firmware | =03.07.0101 | |
Zte R8500g4 Firmware | =03.07.0103 | |
Zte R8500g4 | ||
Zte R5500g4 Firmware | =03.06.0100 | |
Zte R5500g4 Firmware | =03.07.0100 | |
Zte R5500g4 Firmware | =03.07.0200 | |
Zte R5500g4 Firmware | =03.08.0100 | |
Zte R5500g4 | ||
Zte R5300g4 Firmware | =03.04.0020 | |
Zte R5300g4 Firmware | =03.05.0040 | |
Zte R5300g4 Firmware | =03.05.0043 | |
Zte R5300g4 Firmware | =03.05.0044 | |
Zte R5300g4 Firmware | =03.05.0045 | |
Zte R5300g4 Firmware | =03.05.0046 | |
Zte R5300g4 Firmware | =03.05.0047 | |
Zte R5300g4 Firmware | =03.07.0100 | |
Zte R5300g4 Firmware | =03.07.0108 | |
Zte R5300g4 Firmware | =03.07.0200 | |
Zte R5300g4 Firmware | =03.07.0300 | |
Zte R5300g4 Firmware | =03.08.0100 | |
Zte R5300g4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.