CVE-2018-7366
Last modified
CVE-2018-7366 is a vulnerability of currently unknown severity. ZTE ZXV10 B860AV2.1 product ChinaMobile branch with the ICNT versions up to V1.3.3, the BESTV versions up to V1.2.2, the WASU versions up to V1.1.7 and the MGTV versions up to V1.4.6 have an authentication bypass vulnerability, which may allows an unauthorized user to perform unauthorized operations.. EPSS estimates a 0.58% chance of exploitation in the next 30 days.
Description
ZTE ZXV10 B860AV2.1 product ChinaMobile branch with the ICNT versions up to V1.3.3, the BESTV versions up to V1.2.2, the WASU versions up to V1.1.7 and the MGTV versions up to V1.4.6 have an authentication bypass vulnerability, which may allows an unauthorized user to perform unauthorized operations.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Zte | Zxv10 B860av2.1 Chinamobile Firmware | < icnt_v1.3.3 |
| Zte | Zxv10 B860av2.1 Chinamobile Firmware | < bestv_v1.2.2 |
| Zte | Zxv10 B860av2.1 Chinamobile Firmware | < wasu_v1.1.7 |
| Zte | Zxv10 B860av2.1 Chinamobile Firmware | < mgtv_v1.4.6 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-7366?
How severe is CVE-2018-7366?
How do I fix CVE-2018-7366?
Are you affected by CVE-2018-7366?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST