CVE-2021-21750
First published: Mon Dec 27 2021(Updated: )
ZTE BigVideo Analysis product has a privilege escalation vulnerability. Due to improper management of the timed task modification privilege, an attacker with ordinary user permissions could exploit this vulnerability to gain unauthorized access.
Credit: psirt@zte.com.cn
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zte Zxin10 Cms | <=3.01.01.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this ZTE BigVideo Analysis product vulnerability?
The vulnerability ID for this ZTE BigVideo Analysis product vulnerability is CVE-2021-21750.
What is the title of the ZTE BigVideo Analysis product vulnerability?
The title of the ZTE BigVideo Analysis product vulnerability is "ZTE BigVideo Analysis product has a privilege escalation vulnerability."
What is the severity of CVE-2021-21750?
The severity of CVE-2021-21750 is high with a CVSS score of 7.8.
What software is affected by CVE-2021-21750?
The ZTE BigVideo Analysis product with version up to and including 3.01.01.04 is affected by CVE-2021-21750.
How can an attacker exploit CVE-2021-21750?
An attacker with ordinary user permissions could exploit CVE-2021-21750 to gain unauthorized access by improperly managing the timed task modification privilege.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/description
- agent/author
- agent/references
- agent/severity
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zte
- canonical/zte zxin10 cms
- version/zte zxin10 cms/3.01.01.04