VYPR
Unrated severityNVD Advisory· Published May 12, 2022· Updated Aug 3, 2024

CVE-2022-23139

CVE-2022-23139

Description

ZTE's ZXMP M721 product has a permission and access control vulnerability. Since the folder permission viewed by sftp is 666, which is inconsistent with the actual permission. It’s easy for?users to?ignore the modification?of?the file permission configuration, so that low-authority accounts could actually obtain higher operating permissions on key files.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zte/ZXMP M721cpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.