First published: Fri Feb 26 2021(Updated: )
A ZTE product has a memory leak vulnerability. Due to the product's improper handling of memory release in certain scenarios, a local attacker with device permissions repeatedly attenuated the optical signal to cause memory leak and abnormal service. This affects: ZXR10 8900E, all versions up to V3.03.20R2B30P1.
Credit: psirt@zte.com.cn
Affected Software | Affected Version | How to fix |
---|---|---|
<=3.03.20r2b30p1 | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this ZTE product vulnerability is CVE-2021-21724.
The severity of CVE-2021-21724 is medium (4.4).
ZXR10 8900E firmware versions up to V3.03.20r2b30p1 are affected by CVE-2021-21724.
The vulnerability can be exploited by a local attacker to cause memory leaks and abnormal service.
No, ZXR10 8900E hardware is not vulnerable to CVE-2021-21724.