CVE-2023-25644

🗓️ 14 Dec 2023 08:04:26Reported by zteType

There's a denial of service vulnerability in some ZTE mobile internet products, allowing attackers to perform a denial of service attack

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-25644	10 Jan 202417:41	–	circl
CNNVD	ZTE MC801A 安全漏洞	14 Dec 202300:00	–	cnnvd
CNVD	ZTE MC801A and MC801A1 Web Interface Buffer Overflow Vulnerability	18 Dec 202300:00	–	cnvd
Cvelist	CVE-2023-25644 Denial of Service Vulnerability in Some ZTE Mobile Internet Products	14 Dec 202308:04	–	cvelist
EUVD	EUVD-2023-29583	3 Oct 202520:07	–	euvd
NVD	CVE-2023-25644	14 Dec 202308:15	–	nvd
Prion	Input validation	14 Dec 202308:15	–	prion
Positive Technologies	PT-2023-20205 · Zte · Zte Mobile Internet Product	14 Dec 202300:00	–	ptsecurity
Vulnrichment	CVE-2023-25644 Denial of Service Vulnerability in Some ZTE Mobile Internet Products	14 Dec 202308:04	–	vulnrichment

NVD

Node

zte mc801a_firmwareMatchmc801a_elisa3_b19

AND

zte mc801aMatch-

Node

zte mc801a1_firmwareMatchmc801a1_elisa1_b04

AND

zte mc801a1Match-

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "MC801A",
    "vendor": "ZTE",
    "versions": [
      {
        "lessThanOrEqual": "B19",
        "status": "affected",
        "version": "MC801A_Elisa3_B19",
        "versionType": "B19"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "MC801A1",
    "vendor": "ZTE",
    "versions": [
      {
        "lessThanOrEqual": "B04",
        "status": "affected",
        "version": "MC801A1_Elisa1_B04",
        "versionType": "B04"
      }
    ]
  }
]

Source	Link
support	www.support.zte.com.cn/support/news/LoopholeInfoDetail.aspx

21 Nov 2024 07:49Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.16.5 - 7.5

EPSS0.00312

SSVC

CWE-755