CVE-2022-23138
First published: Thu Jun 09 2022(Updated: )
ZTE's MF297D product has cryptographic issues vulnerability. Due to the use of weak random values, the security of the device is reduced, and it may face the risk of attack.
Credit: psirt@zte.com.cn
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zte Mf297d Firmware | =mf297d_nordic1_b05 | |
| Zte Mf297d |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this ZTE product vulnerability?
The vulnerability ID for this ZTE product vulnerability is CVE-2022-23138.
What is the severity level of CVE-2022-23138?
CVE-2022-23138 has a severity level of high with a value of 7.5.
What is the affected software for CVE-2022-23138?
The affected software for CVE-2022-23138 is ZTE's MF297D product firmware version mf297d_nordic1_b05.
What is the risk associated with CVE-2022-23138?
The risk associated with CVE-2022-23138 is reduced device security and potential vulnerability to attacks.
How can I fix the cryptographic issues vulnerability in ZTE's MF297D product?
To fix the cryptographic issues vulnerability in ZTE's MF297D product, update the firmware to version mf297d_nordic1_b06 or later.
- collector/nvd-index
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zte
- canonical/zte mf297d firmware
- version/zte mf297d firmware/mf297d_nordic1_b05
- canonical/zte mf297d