CVE-2023-25651 SQL Injection Vulnerability in Some ZTE Mobile Internet Products

🗓️ 14 Dec 2023 07:03:54Reported by zteType

ZTE Mobile Internet Products SQL Injection Vulnerability

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-25651	10 Jan 202417:08	–	circl
CNNVD	ZTE MF286R SQL Injection Vulnerability	14 Dec 202300:00	–	cnnvd
CVE	CVE-2023-25651	14 Dec 202307:03	–	cve
EUVD	EUVD-2023-29590	3 Oct 202520:07	–	euvd
NVD	CVE-2023-25651	14 Dec 202307:15	–	nvd
OSV	CVE-2023-25651	14 Dec 202307:15	–	osv
Prion	Sql injection	14 Dec 202307:15	–	prion
Positive Technologies	PT-2023-20212 · Zte · Zte Mobile Internet	14 Dec 202300:00	–	ptsecurity
VulnCheck KEV	VulnCheck KEV: CVE-2023-25651	19 Sep 202400:00	–	vulncheck_kev

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux"
    ],
    "product": "Mobile Internet Products",
    "vendor": "ZTE",
    "versions": [
      {
        "lessThanOrEqual": "V1.0.0B01",
        "status": "affected",
        "version": "BD_MF833U1V1.0.0B01",
        "versionType": "V1.0.0B01"
      },
      {
        "lessThanOrEqual": "V1.0.0B04",
        "status": "affected",
        "version": "CR_LVWRGBMF286RV1.0.0B04",
        "versionType": "V1.0.0B04"
      }
    ]
  }
]

Source	Link
support	www.support.zte.com.cn/support/news/LoopholeInfoDetail.aspx

14 Dec 2023 08:17Current

8.2High risk

Vulners AI Score8.2

CVSS 3.14.3

EPSS0.00342

CWE-20