Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-25651

There is a SQL injection vulnerability in some ZTE mobile internet products. Due to insufficient input validation of SMS interface parameter, an authenticated attacker could use the vulnerability to execute SQL injection and cause information leak.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 25.9%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2023-25651
  • Zte » Mf286r » Version: N/A
    cpe:2.3:h:zte:mf286r:-
  • Zte » Mf833u1 » Version: N/A
    cpe:2.3:h:zte:mf833u1:-
  • Zte » Mf286r Firmware » Version: cr_lvwrgbmf286rv1.0.0b04
    cpe:2.3:o:zte:mf286r_firmware:cr_lvwrgbmf286rv1.0.0b04
  • Zte » Mf833u1 Firmware » Version: bd_mf833u1v1.0.0b01
    cpe:2.3:o:zte:mf833u1_firmware:bd_mf833u1v1.0.0b01


Products
Pricing
Contact Us

Shodan ® - All rights reserved