There is a weak folder permission vulnerability in ZTEβs ZXCLOUD iRAI product. Due to weak folder permission, an attacker with ordinary user privileges could construct a fake DLLΒ to execute command to escalate local privileges.
CPE | Name | Operator | Version |
---|---|---|---|
zxcloud_irai_firmware | lt | 7.23.21 |