CVE-2023-25650: Arbitrary File Download Vulnerability in ZTE ZXCLOUD iRAI
First published: Thu Dec 14 2023(Updated: )
There is an arbitrary file download vulnerability in ZXCLOUD iRAI. Since the backend does not escape special strings or restrict paths, an attacker with user permission could access the download interface by modifying the request parameter, causing arbitrary file downloads.
Credit: psirt@zte.com.cn
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ZTE ZXCloud iRAI | <7.23.30 | |
| ZTE ZXCloud iRAI |
Remedy
ZXCLOUD iRAI V7.23.30
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-25650?
CVE-2023-25650 is classified as a high severity vulnerability due to its potential for arbitrary file downloads by attackers.
How do I fix CVE-2023-25650?
To fix CVE-2023-25650, ensure that you update ZXCLOUD iRAI to a version later than 7.23.30 where the vulnerability is addressed.
Who is affected by CVE-2023-25650?
CVE-2023-25650 affects users of ZTE ZXCLOUD iRAI versions up to 7.23.30.
What type of attack can be executed using CVE-2023-25650?
An attacker can exploit CVE-2023-25650 to perform arbitrary file downloads by manipulating request parameters.
Is user permission required to exploit CVE-2023-25650?
Yes, an attacker needs user permission to access the download interface related to CVE-2023-25650.
- agent/event
- agent/type
- agent/first-publish-date
- agent/title
- agent/severity
- agent/weakness
- agent/remedy
- agent/author
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/description
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/zte
- canonical/zte zxcloud irai