Strix
26.1K

CVE-2018-7358

UnknownEPSS 89.64%

Last modified

CVE-2018-7358 is a vulnerability of currently unknown severity. ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper change control vulnerability, which may allow an unauthorized user to perform unauthorized operations.. EPSS estimates a 89.64% chance of exploitation in the next 30 days.

Description

ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper change control vulnerability, which may allow an unauthorized user to perform unauthorized operations.

Metrics

EPSS Probability
89.64%

99.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
ZteZxhn H168n Firmware2.2.0_pk1.2t2
ZteZxhn H168n Firmware2.2.0_pk1.2t5
ZteZxhn H168n Firmware2.2.0_pk11t
ZteZxhn H168n Firmware2.2.0_pk11t7

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2018-7358?
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper change control vulnerability, which may allow an unauthorized user to perform unauthorized operations.
How severe is CVE-2018-7358?
Severity scoring for CVE-2018-7358 is pending analysis. The EPSS model estimates a 89.64% probability of exploitation in the next 30 days.
How do I fix CVE-2018-7358?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-7358?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST