CVE-2024-22069 Information

Description

There is a permission and access control vulnerability of ZTE’s ZXV10 XT802/ET301 product.Attackers with common permissions can log in the terminal web and change the password of the administrator illegally by intercepting requests to change the passwords.

Reference

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1036424