cvedb.io
CVE-2022-23144
CRITICAL · CVSS 9.1
EPSS exploitation probability: 0%
Published 2022-09-23T15:15:12.687 · Last modified 2026-06-17T04:29:35.647

Summary

There is a broken access control vulnerability in ZTE ZXvSTB product. Due to improper permission control, attackers could use this vulnerability to delete the default application type, which affects normal use of system.

Affected products

zte — zxa10_b76hv3_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when zte ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.