3 matches found
CVE-2022-39072
There is a SQL injection vulnerability in Some ZTE Mobile Internet products. Due to insufficient validation of the input parameters of the SNTP interface, an authenticated attacker could use the vulnerability to execute stored XSS attacks...
CVE-2022-39072
There is a SQL injection vulnerability in Some ZTE Mobile Internet products. Due to insufficient validation of the input parameters of the SNTP interface, an authenticated attacker could use the vulnerability to execute stored XSS attacks...
CVE-2022-39072
CVE-2022-39072 concerns a SQL injection in Some ZTE Mobile Internet products stemming from insufficient validation of SNTP interface parameters. The issue is exploitable by an authenticated attacker and could lead to stored XSS in affected contexts. The documented CVSSv3.1 impact is Low confident...