Main Vulnerability Database Exploits ID:8246 - Exploit for Permissions, Privileges, and Access Controls in F460 and F660 - CVE-2014-2321

ID:8246 - Exploit for Permissions, Privileges, and Access Controls in F460 and F660 - CVE-2014-2321

Published: August 14, 2022

Vulnerability identifier: #VU58147

Vulnerability risk: Medium

CVE-ID: CVE-2014-2321

CWE-ID: CWE-264

Exploitation vector: Adjecent network

Vulnerable software:
F460
F660

Link to public exploit:

https://github.com/injectionmethod/ZTE-Vuln-4-Skids

Vulnerability description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to application does not properly impose security restrictions in the web_shell_cmd.gch script. A remote attacker on the local network can gain elevated privileges on the target system.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

ID:8246 - Exploit for Permissions, Privileges, and Access Controls in F460 and F660 - CVE-2014-2321

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human