ZXIPTV

CVEs (3)

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2017-10934	Zte ZXIPTV	0.01	—	0.07	Jul 25, 2018	All versions prior to V5.09.02.02T4 of the ZTE ZXIPTV-EPG product use the Java RMI service in which the servers use the Apache Commons Collections (ACC) library that may result in Java deserialization vulnerabilities. An unauthenticated remote attacker can exploit the…
CVE-2021-21738	Zte ZXIPTV	0.00	—	0.00	Aug 5, 2021	ZTE's big video business platform has two reflective cross-site scripting (XSS) vulnerabilities. Due to insufficient input verification, the attacker could implement XSS attacks by tampering with the parameters, to affect the operations of valid users. This affects:…
CVE-2020-6874	Zte ZXIPTV	0.00	—	0.00	Sep 1, 2020	A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability for account credential enumeration attack or brute-force attack for password guessing. This affects: ZXIPTV,…

CVE-2017-10934Jul 25, 2018
Zte
ZXIPTV
risk 0.01cvss —epss 0.07
All versions prior to V5.09.02.02T4 of the ZTE ZXIPTV-EPG product use the Java RMI service in which the servers use the Apache Commons Collections (ACC) library that may result in Java deserialization vulnerabilities. An unauthenticated remote attacker can exploit the…
CVE-2021-21738Aug 5, 2021
Zte
ZXIPTV
risk 0.00cvss —epss 0.00
ZTE's big video business platform has two reflective cross-site scripting (XSS) vulnerabilities. Due to insufficient input verification, the attacker could implement XSS attacks by tampering with the parameters, to affect the operations of valid users. This affects:…
CVE-2020-6874Sep 1, 2020
Zte
ZXIPTV
risk 0.00cvss —epss 0.00
A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability for account credential enumeration attack or brute-force attack for password guessing. This affects: ZXIPTV,…