CVE-2023-25650

Published Dec 14, 2023

Last updated 4 months ago

CVSS medium 6.5

Overview

Description: There is an arbitrary file download vulnerability in ZXCLOUD iRAI. Since the backend does not escape special strings or restrict paths, an attacker with user permission could access the download interface by modifying the request parameter, causing arbitrary file downloads.
Source: psirt@zte.com.cn
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Severity: MEDIUM

Weaknesses

psirt@zte.com.cn: CWE-20
nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:zte:zxcloud_irai:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66470CAB-0FEF-44FD-8158-5A37238C3BAA",
            "versionEndExcluding": "7.23.30"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:zte:zxcloud_irai:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "96352962-7748-44B8-9490-B95202771469"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References