CVE-2023-25642 Two Vulnerabilities in Some ZTE Mobile Internet Products

🗓️ 14 Dec 2023 07:17:08Reported by zteType

Buffer overflow vulnerability in ZTE mobile internet products

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-25642	10 Jan 202417:08	–	circl
CNNVD	ZTE MC801A 安全漏洞	14 Dec 202300:00	–	cnnvd
CNVD	ZTE MC801A tcp port parameter buffer overflow vulnerability	18 Dec 202300:00	–	cnvd
CVE	CVE-2023-25642	14 Dec 202307:17	–	cve
EUVD	EUVD-2023-29581	3 Oct 202520:07	–	euvd
NVD	CVE-2023-25642	14 Dec 202308:15	–	nvd
OSV	CVE-2023-25642	14 Dec 202308:15	–	osv
Prion	Buffer overflow	14 Dec 202308:15	–	prion
Positive Technologies	PT-2023-20203 · Zte · Zte Mobile Internet	14 Dec 202300:00	–	ptsecurity

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "MC801A",
    "vendor": "ZTE",
    "versions": [
      {
        "lessThanOrEqual": "B19",
        "status": "affected",
        "version": "MC801A_Elisa3_B19",
        "versionType": "B19"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MC801A1",
    "vendor": "ZTE",
    "versions": [
      {
        "lessThanOrEqual": "B04",
        "status": "affected",
        "version": "MC801A1_Elisa1_B04",
        "versionType": "B04"
      }
    ]
  }
]

Source	Link
support	www.support.zte.com.cn/support/news/LoopholeInfoDetail.aspx

14 Dec 2023 07:17Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.15.9

EPSS0.00512

CWE-120