VYPR

ZX297520V3

by Zte

CVEs (2)

  • CVE-2019-3421HigOct 31, 2019
    risk 0.52cvss 8.0epss 0.01

    The 7520V3V1.0.0B09P27 version, and all earlier versions of ZTE product ZX297520V3 are impacted by a Command Injection vulnerability. Unauthorized users can exploit this vulnerability to control the user terminal system.

  • CVE-2026-40003MedMay 7, 2026
    risk 0.33cvss 5.1epss 0.00

    ZTE ZX297520V3 BootROM contains a vulnerability that allows arbitrary memory writes via USB. Attackers can exploit the lack of target address validation in the USB download mode to write data to any location in BootROM runtime memory, thereby overwriting the stack, hijacking the…