3 matches found
CVE-2022-23135
There is a directory traversal vulnerability in some home gateway products of ZTE. Due to the lack of verification of user modified destination path, an attacker with specific permissions could modify the FTP access path to access and modify the system path contents without authorization, which...
CVE-2022-23135
The CVE-2022-23135 entry concerns a directory traversal vulnerability in ZTE Zxhn F677 home gateways. The connected documents specify that versions prior to 9.0.0p1n29 expose a flaw where the lack of validation of user-modified destination paths allows an attacker with certain permissions to modi...
CVE-2022-23135
There is a directory traversal vulnerability in some home gateway products of ZTE. Due to the lack of verification of user modified destination path, an attacker with specific permissions could modify the FTP access path to access and modify the system path contents without authorization, which...