Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-41779

There is an illegal memory access vulnerability of ZTE's ZXCLOUD iRAI product.When the vulnerability is exploited by an attacker with the common user permission, the physical machine will be crashed.

Published

2024-01-03T02:15:43.217

Last Modified

2025-01-28T15:36:03.663

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.4 (MEDIUM)

Weaknesses

Type: Secondary
CWE-119
Type: Primary
CWE-863

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	zte	zxcloud_irai	< 7.23.32	Yes
Application	zte	zxcloud_irai	-	No

References

https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1034404 Vendor Advisory ([email protected])
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1034404 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)