Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

35 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-41613

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00536EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:21 p.m.4 views

CVE-2022-39067

There is a buffer overflow vulnerability in ZTE MF286R. Due to lack of input validation on parameters of the wifi interface, an authenticated attacker could use the vulnerability to perform a denial of service attack...

6.5CVSS6.6AI score0.00536EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:15 p.m.3 views

CVE-2022-39073

There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands...

9.8CVSS9.8AI score0.17578EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:9 p.m.6 views

CVE-2022-39066

There is a SQL injection vulnerability in ZTE MF286R. Due to insufficient validation of the input parameters of the phonebook interface, an authenticated attacker could use the vulnerability to execute arbitrary SQL injection...

8.8CVSS8AI score0.51077EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/12/14 12:0 a.m.1 views

ZTE MF286R SQL Injection Vulnerability

The ZTE MF286R is a wireless router from ZTE Corporation ZTE of China. A security vulnerability exists in the ZTE MF286R that stems from the presence of a SQL injection vulnerability...

8CVSS7.9AI score0.00044EPSS
Exploits0References2
CNVD
CNVDadded 2023/08/29 12:0 a.m.5 views

ZTE MF286R Command Injection Vulnerability (CNVD-2023-99925)

The ZTE MF286R is a wireless router from China's ZTE Corporation ZTE. A command injection vulnerability exists in the ZTE MF286R CRLVWRGBMF286RV1.0.0B04 version, which originates from an application that fails to properly filter constructed command special characters, commands, and so on. An...

8.8CVSS7.3AI score0.0015EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/08/25 12:0 a.m.1 views

ZTE MF286R 命令注入漏洞

The ZTE MF286R is a wireless router from China's ZTE Corporation ZTE. A command injection vulnerability exists in the ZTE MF286R CRLVWRGBMF286RV1.0.0B04 version, which originates from an application that fails to properly filter constructed command special characters, commands, and so on. An...

8.8CVSS7.8AI score0.0015EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2023/06/07 12:0 a.m.46 views

(0Day) ZTE MF286R goahead Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ZTE MF286R routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of a request parameter provided to the SETDEVICELED endpoint. The...

6.8CVSS7.3AI score0.0015EPSS
Exploits0References1
CNVD
CNVDadded 2023/01/11 12:0 a.m.79 views

ZTE MF286R Command Injection Vulnerability

The ZTE MF286R is a wireless router from China's ZTE Corporation ZTE. A command injection vulnerability exists in the ZTE Mobile MF286R NordicMF286RB06, which stems from insufficient validation of input parameters and can be exploited by an attacker to execute arbitrary commands...

9.8CVSS9.8AI score0.17578EPSS
Exploits1References1
GithubExploit
GithubExploitadded 2023/01/07 8:46 p.m.994 views

Exploit for Command Injection in Zte Mf286R_Firmware

CVE-2022-39073 Firmware details: wainnerversion: BDPO...

9.8CVSS10AI score0.17578EPSS
Exploits1
OSV
OSVadded 2023/01/06 7:15 p.m.1 views

CVE-2022-39073

There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands...

9.8CVSS6AI score0.17578EPSS
Exploits1References1
NVD
NVDadded 2023/01/06 7:15 p.m.15 views

CVE-2022-39073

There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands...

9.8CVSS9.8AI score0.17578EPSS
Exploits1References1
Prion
Prionadded 2023/01/06 7:15 p.m.15 views

Command injection

There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands...

7.5CVSS9.7AI score0.17578EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2023/01/06 12:0 a.m.18 views

CVE-2022-39073

There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands...

10AI score0.17578EPSS
Exploits1References1
CVE
CVEadded 2023/01/06 12:0 a.m.78 views

CVE-2022-39073

CVE-2022-39073 affects ZTE MF286R routers. Multiple connected sources confirm a command-injection due to insufficient input validation, enabling arbitrary command execution. Details across Red Hat, CNVD/CNNVD, and CVE records consistently describe the flaw and impact (RCE potential). A GitHub exp...

9.8CVSS9.7AI score0.17578EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/01/06 12:0 a.m.9 views

CVE-2022-39073

There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands...

7.8AI score0.17578EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/01/06 12:0 a.m.2 views

ZTE MF286R和ZTE MF289D SQL注入漏洞

ZTE MF286R and ZTE MF289D are both products of ZTE Corporation ZTE, China.ZTE MF286R is a wireless router.ZTE MF289D is a home wireless router. ZTE Mobile MF286R, MF289D has a SQL injection vulnerability that originates from insufficient validation of the input parameters of the NTP interface,...

5.4CVSS5.9AI score0.00523EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/01/06 12:0 a.m.5 views

PT-2023-13684 · Zte · Zte Mf286R

Name of the Vulnerable Software and Affected Versions: ZTE MF286R affected versions not specified Description: The issue is related to a command injection vulnerability. It occurs due to insufficient validation of the input parameters, allowing an attacker to execute arbitrary commands...

9.8CVSS8AI score0.17578EPSS
Exploits1References5
GithubExploit
GithubExploitadded 2022/12/12 1:45 p.m.695 views

Exploit for SQL Injection in Zte Mf286R_Firmware

CVE-2022-39066 Firmware details: wainnerversion: BDPO...

8.8CVSS9.1AI score0.51077EPSS
Exploits1
CNVD
CNVDadded 2022/11/24 12:0 a.m.34 views

ZTE MF286R SQL Injection Vulnerability

The ZTE MF286R is a wireless router from ZTE Corporation China.A SQL injection vulnerability exists in previous versions of the ZTE MF286R mf286rb07, which stems from insufficient validation of the input parameters of the phonebook interface. An authenticated attacker could use this vulnerability...

8.8CVSS4.4AI score0.51077EPSS
Exploits1References1
Rows per page
Query Builder