ZTE BigVideo Analysis product has a privilege escalation vulnerability. Due to improper management of the timed task modification privilege, an attacker with ordinary user permissions could exploit this vulnerability to gain unauthorized access.
References
Link | Resource |
---|---|
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1021884 | Vendor Advisory |
Configurations
History
12 Jan 2022, 13:25
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1021884 - Vendor Advisory | |
CWE | CWE-269 | |
First Time |
Zte zxin10 Cms
Zte |
|
CPE | cpe:2.3:a:zte:zxin10_cms:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 7.8 |
27 Dec 2021, 19:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-12-27 19:15
Updated : 2023-12-10 14:09
NVD link : CVE-2021-21750
Mitre link : CVE-2021-21750
CVE.ORG link : CVE-2021-21750
JSON object : View
Products Affected
zte
- zxin10_cms
CWE
CWE-269
Improper Privilege Management