What is CVE-2022-23144?

CVE-2022-23144 is a broken access control vulnerability in ZTE ZXvSTB product, which allows attackers to delete the default application type and affect the normal use of the system.

How does CVE-2022-23144 affect ZTE ZXvSTB product?

CVE-2022-23144 affects ZTE ZXvSTB product by allowing attackers to delete the default application type, impacting the normal use of the system.

What is the severity of CVE-2022-23144?

The severity of CVE-2022-23144 is critical with a severity value of 9.1.

How can I fix CVE-2022-23144?

To fix CVE-2022-23144, it is recommended to apply the necessary security patches or updates provided by ZTE.

Where can I find more information about CVE-2022-23144?

You can find more information about CVE-2022-23144 on the ZTE support website at [link](https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1026224).

Vulnerability/
CVE-2022-23144

critical

9.1

23/9/2022

3/8/2024

CVE-2022-23144

First published: Fri Sep 23 2022(Updated: )

There is a broken access control vulnerability in ZTE ZXvSTB product. Due to improper permission control, attackers could use this vulnerability to delete the default application type, which affects normal use of system.

Credit: psirt@zte.com.cn

Affected Software	Affected Version	How to fix
Zte Zxa10 B76hv3 Firmware	<=2.01.02.01
Zte Zxa10 B76hv3
Zte Zxa10 B766v2 Firmware	<=2.01.02.01
Zte Zxa10 B766v2
Zte Zxa10 B800v2 Firmware	<=2.01.02.01
Zte Zxa10 B800v2
Zte Zxa10 B860av2.1 Firmware	<=2.01.02.01
Zte Zxa10 B860av2.1
Zte Zxa10 B860h Firmware	<=2.01.02.01
Zte Zxa10 B860h
Zte Zxa10 B866v2-h Firmware	<=2.01.02.01
Zte Zxa10 B866v2-h
Zte Zxa10 B866v5-w10 Firmware	<=2.01.02.01
Zte Zxa10 B866v5-w10
Zte Zxa10 B960gv1 Firmware	<=2.01.02.01
Zte Zxa10 B960gv1
Zte Zxa10 B710c-a12 Firmware	<=2.01.02.01
Zte Zxa10 B710c-a12
Zte Zxa10 B710s2-a19 Firmware	<=2.01.02.01
Zte Zxa10 B710s2-a19
Zte Zxa10 B836ct-a15 Firmware	<=2.01.02.01
Zte Zxa10 B836ct-a15
Zte Zxa10 S100v Firmware	<=2.01.02.01
Zte Zxa10 S100v
Zte Zxa10 S200a Firmware	<=2.01.02.01
Zte Zxa10 S200a
Zte Zxa10 S200t Firmware	<=2.01.02.01
Zte Zxa10 S200t
Zte Zxa10 B700v7 Firmware	<=2.01.02.01
Zte Zxa10 B700v7

Never miss a vulnerability like this again

Reference Links

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1026224

Frequently Asked Questions

What is CVE-2022-23144?
CVE-2022-23144 is a broken access control vulnerability in ZTE ZXvSTB product, which allows attackers to delete the default application type and affect the normal use of the system.
How does CVE-2022-23144 affect ZTE ZXvSTB product?
CVE-2022-23144 affects ZTE ZXvSTB product by allowing attackers to delete the default application type, impacting the normal use of the system.
What is the severity of CVE-2022-23144?
The severity of CVE-2022-23144 is critical with a severity value of 9.1.
How can I fix CVE-2022-23144?
To fix CVE-2022-23144, it is recommended to apply the necessary security patches or updates provided by ZTE.
Where can I find more information about CVE-2022-23144?
You can find more information about CVE-2022-23144 on the ZTE support website at [link](https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1026224).

collector/nvd-index
agent/severity
agent/references
agent/author
agent/description
agent/event
agent/type
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/zte
canonical/zte zxa10 b76hv3 firmware
version/zte zxa10 b76hv3 firmware/2.01.02.01
canonical/zte zxa10 b76hv3
canonical/zte zxa10 b766v2 firmware
version/zte zxa10 b766v2 firmware/2.01.02.01
canonical/zte zxa10 b766v2
canonical/zte zxa10 b800v2 firmware
version/zte zxa10 b800v2 firmware/2.01.02.01
canonical/zte zxa10 b800v2
canonical/zte zxa10 b860av2.1 firmware
version/zte zxa10 b860av2.1 firmware/2.01.02.01
canonical/zte zxa10 b860av2.1
canonical/zte zxa10 b860h firmware
version/zte zxa10 b860h firmware/2.01.02.01
canonical/zte zxa10 b860h
canonical/zte zxa10 b866v2-h firmware
version/zte zxa10 b866v2-h firmware/2.01.02.01
canonical/zte zxa10 b866v2-h
canonical/zte zxa10 b866v5-w10 firmware
version/zte zxa10 b866v5-w10 firmware/2.01.02.01
canonical/zte zxa10 b866v5-w10
canonical/zte zxa10 b960gv1 firmware
version/zte zxa10 b960gv1 firmware/2.01.02.01
canonical/zte zxa10 b960gv1
canonical/zte zxa10 b710c-a12 firmware
version/zte zxa10 b710c-a12 firmware/2.01.02.01
canonical/zte zxa10 b710c-a12
canonical/zte zxa10 b710s2-a19 firmware
version/zte zxa10 b710s2-a19 firmware/2.01.02.01
canonical/zte zxa10 b710s2-a19
canonical/zte zxa10 b836ct-a15 firmware
version/zte zxa10 b836ct-a15 firmware/2.01.02.01
canonical/zte zxa10 b836ct-a15
canonical/zte zxa10 s100v firmware
version/zte zxa10 s100v firmware/2.01.02.01
canonical/zte zxa10 s100v
canonical/zte zxa10 s200a firmware
version/zte zxa10 s200a firmware/2.01.02.01
canonical/zte zxa10 s200a
canonical/zte zxa10 s200t firmware
version/zte zxa10 s200t firmware/2.01.02.01
canonical/zte zxa10 s200t
canonical/zte zxa10 b700v7 firmware
version/zte zxa10 b700v7 firmware/2.01.02.01
canonical/zte zxa10 b700v7