Zte Security Vulnerabilities (CVEs)
Track 28 security vulnerabilities affecting Zte products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
SQL injection vulnerabilities in GoldenDB database interfaces allow attackers to execute arbitrary SQL commands and extract sensitive data. Organizati...
Apr 27, 2025This CVE describes a DDE injection vulnerability in GoldenDB database products that allows attackers to embed malicious DDE expressions in files. When...
Apr 27, 2025This vulnerability in GoldenDB database allows attackers to bypass privilege restrictions through request manipulation, enabling unauthorized content ...
Apr 27, 2025An information disclosure vulnerability in GoldenDB database allows attackers to extract sensitive system information through error messages. Organiza...
Apr 27, 2025An improper privilege management vulnerability in ZTE GoldenDB allows authenticated users to escalate their privileges beyond intended levels. This af...
Mar 11, 2025An improper input validation vulnerability in ZTE GoldenDB allows attackers to manipulate input data, potentially leading to unauthorized data modific...
Mar 11, 2025A privilege management vulnerability in ZTE GoldenDB allows authenticated users to escalate their privileges beyond intended levels. This affects Gold...
Mar 11, 2025ZTE ZENIC ONE R58 products contain a command injection vulnerability that allows authenticated attackers to execute arbitrary commands. This enables m...
Dec 30, 2024CVE-2024-22066 is an authentication bypass vulnerability in ZTE ZXR10 ZSR V2 routers that allows authenticated attackers to escalate privileges and ac...
Oct 29, 2024This CVE describes a command injection vulnerability in ZTE MF258 Pro mobile hotspot devices. An authenticated attacker can exploit insufficient param...
Oct 29, 2024CVE-2024-10119 is a critical OS command injection vulnerability in SECOM WRTM326 wireless routers that allows unauthenticated remote attackers to exec...
Oct 18, 2024This vulnerability allows authenticated users with common permissions to intercept password change requests and modify administrator credentials on ZT...
Aug 8, 2024ZTE ZXUN-ePDG products use non-unique cryptographic keys by default when establishing IKE secure connections with mobile devices over the internet. If...
May 14, 2024CVE-2023-25643 is a command injection vulnerability in certain ZTE mobile internet products that allows authenticated attackers to execute arbitrary c...
Dec 14, 2023This vulnerability in ZTE AndroidTV set-top boxes allows non-privileged applications to bypass permission controls and execute protected functions. At...
Jun 16, 2023This vulnerability in some ZTE mobile phones allows malicious applications to overwrite system configuration files and user installers without user pe...
May 30, 2023This vulnerability allows malicious applications installed on affected ZTE mobile phones to delete system files without user permission. It affects us...
May 30, 2023This vulnerability in ZTE's ZXMP M721 product involves incorrect SFTP folder permission reporting (showing 666 instead of actual permissions), allowin...
May 12, 2022This vulnerability in ZTE BigVideo analysis product allows authenticated attackers with high privileges to tamper with URLs due to inconsistent front-...
Dec 27, 2021This vulnerability in ZTE MF971R devices allows attackers to modify configuration files, potentially disabling security functions. It affects users of...
Oct 20, 2021CVE-2021-21748 affects ZTE MF971R mobile hotspot devices with two stack-based buffer overflow vulnerabilities. Attackers can exploit these vulnerabili...
Oct 20, 2021CVE-2021-21741 is a critical remote code execution vulnerability in ZTE conference management systems where attackers can execute arbitrary commands b...
Aug 30, 2021This vulnerability in ZTE smart cameras allows users whose sharing permissions have been revoked to still control the camera remotely through the clou...
Jun 10, 2021This vulnerability allows third-party applications on affected ZTE mobile phones to read sensitive files from the proc filesystem without proper autho...
May 19, 2021This vulnerability allows attackers to bypass authentication on ZTE ZXHN H168N routers via brute force attacks against the command-line interface (CLI...
Apr 13, 2021This is a critical SQL injection vulnerability in ZXELINK wireless controllers that allows remote attackers to execute arbitrary SQL commands without ...
Dec 1, 2020This vulnerability in ZTE networking products allows attackers to bypass authentication through brute-force attacks due to missing access control mech...
Oct 5, 2020This vulnerability in ZTE ZXIPTV products involves improper implementation of cryptographic algorithms, allowing remote attackers to perform account c...
Sep 1, 2020Why Monitor Zte Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 28+ known vulnerabilities affecting Zte products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Zte packages in under 60 seconds. No agents required - completely agentless scanning that works across Zte deployments.
Free vulnerability database: Access detailed information about every Zte CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Zte CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
