Vulnerabilities (CVE)

Filtered by vendor Zte Subscribe

Filtered by product Mf286r

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-25651	1 Zte	4 Mf286r, Mf286r Firmware, Mf833u1 and 1 more	2023-12-19	N/A	8.0 HIGH
There is a SQL injection vulnerability in some ZTE mobile internet products. Due to insufficient input validation of SMS interface parameter, an authenticated attacker could use the vulnerability to execute SQL injection and cause information leak.
CVE-2022-39072	1 Zte	4 Mf286r, Mf286r Firmware, Mf289d and 1 more	2023-08-08	N/A	5.4 MEDIUM
There is a SQL injection vulnerability in Some ZTE Mobile Internet products. Due to insufficient validation of the input parameters of the SNTP interface, an authenticated attacker could use the vulnerability to execute stored XSS attacks.