Unrated severityNVD Advisory· Published May 12, 2022· Updated Aug 3, 2024
CVE-2022-23139
CVE-2022-23139
Description
ZTE's ZXMP M721 product has a permission and access control vulnerability. Since the folder permission viewed by sftp is 666, which is inconsistent with the actual permission. It’s easy for?users to?ignore the modification?of?the file permission configuration, so that low-authority accounts could actually obtain higher operating permissions on key files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- support.zte.com.cn/support/news/LoopholeInfoDetail.aspxmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.