ZTE ZXIPTV-EPG Java Deserialization Vulnerability
ZTE ZXIPTV-EPG A set-top box device from China's ZTE Corporation ZTE. A Java deserialization vulnerability exists in ZTE ZXIPTV-EPG versions prior to 5.09.02.02T4. The vulnerability stems from the server's use of the Apache Commons Collections ACC library in the Java RMI service used, and can be...