Lucene search
K

10 matches found

GithubExploit
GithubExploit
added 2026/05/07 2:44 p.m.88 views

Exploit for CVE-2026-40003

CVE-2026-40003 aka Joselito is arbitrary memory write vulnerabil...

5.1CVSS5.9AI score0.00296EPSS
Exploits1
NVD
NVD
added 2026/05/07 2:16 a.m.11 views

CVE-2026-40003

ZTE ZX297520V3 BootROM contains a vulnerability that allows arbitrary memory writes via USB. Attackers can exploit the lack of target address validation in the USB download mode to write data to any location in BootROM runtime memory, thereby overwriting the stack, hijacking the execution flow,...

6.8CVSS0.00296EPSS
Exploits1References1
CVE
CVE
added 2026/05/07 1:15 a.m.29 views

CVE-2026-40003

CVE-2026-40003 describes a USB-based arbitrary memory write vulnerability in the ZTE ZX297520V3 BootROM. The issue arises from lack of target address validation in the USB download mode, allowing writes to arbitrary locations in BootROM runtime memory. Potential consequences, as stated, include o...

6.8CVSS6.2AI score0.00296EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/07 1:15 a.m.13 views

CVE-2026-40003 USB-based arbitrary memory write vulnerability in ZTE ZX297520V3 soc BootROM

ZTE ZX297520V3 BootROM contains a vulnerability that allows arbitrary memory writes via USB. Attackers can exploit the lack of target address validation in the USB download mode to write data to any location in BootROM runtime memory, thereby overwriting the stack, hijacking the execution flow,...

5.1CVSS6.2AI score0.00296EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.14 views

ZTE ZX297520V3 缓冲区错误漏洞

ZTE ZX297520V3 is an industrial-grade 4G module from ZTE Corporation. The ZTE ZX297520V3 has a buffer error vulnerability. This vulnerability stems from the lack of target address verification in the USB download mode, which may allow arbitrary memory writes. As a result, it can overwrite the...

6.8CVSS6.3AI score0.00296EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.14 views

PT-2026-38322

Name of the Vulnerable Software and Affected Versions ZTE ZX297520V3 affected versions not specified Description The BootROM contains an issue allowing arbitrary memory writes via USB. Due to a lack of target address validation in the USB download mode, it is possible to write data to any locatio...

6.8CVSS6.1AI score0.00296EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-13060

Malware in sbrugna...

8CVSS7.8AI score0.01138EPSS
Exploits0References2
OSV
OSV
added 2019/10/31 4:15 p.m.3 views

CVE-2019-3421

The 7520V3V1.0.0B09P27 version, and all earlier versions of ZTE product ZX297520V3 are impacted by a Command Injection vulnerability. Unauthorized users can exploit this vulnerability to control the user terminal system...

8CVSS7.3AI score0.01138EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/10/31 3:27 p.m.16 views

CVE-2019-3421

The 7520V3V1.0.0B09P27 version, and all earlier versions of ZTE product ZX297520V3 are impacted by a Command Injection vulnerability. Unauthorized users can exploit this vulnerability to control the user terminal system...

8AI score0.01138EPSS
Exploits0References1
CVE
CVE
added 2019/10/31 3:27 p.m.55 views

CVE-2019-3421

The vulnerability CVE-2019-3421 affects the ZTE ZX297520V3 platform (7520V3V1.0.0B09P27 and earlier) and is described as a Command Injection that could let unauthorized users take control of the user terminal system. The CVEs and related records (NVD, Red Hat, prion listing) confirm affected prod...

8CVSS7.9AI score0.01138EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder