Information disclosure vulnerability in ZTE MU5250_CVE-2026-44409

5.7 / 10

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Description

There is an an information disclosure vulnerability in ZTE MU5250. Due to improper configuration of the access control mechanism, attackers can obtain information without authorization, causing the risk of information disclosure.

Basic Information

ID CVE-2026-44409

Source zte

Published May 22, 2026 at 03:49

Affected Product

Vendor ZTE

Product MU5250

Version BD_FLYMODEMMU5250V1.0.0B27

Affected Versions ZTE MU5250 BD_FLYMODEMMU5250V1.0.0B27

CWE Classification

CWE-200

References

support.zte.com.cn /zte-iccp-isupport-webui/bulletin/detail/3711746568357343342

{
    "lastseen": "",
    "description": "There is an an information disclosure vulnerability in ZTE MU5250. Due to improper configuration of the access control mechanism, attackers can obtain information without authorization, causing the risk of information disclosure.",
    "published": "2026-05-22T03:49:56.231Z",
    "modified": "2026-05-22T03:49:56.231Z",
    "type": "cve",
    "title": "Information disclosure vulnerability in ZTE MU5250",
    "source": "zte",
    "references": "https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/3711746568357343342",
    "id": "CVE-2026-44409",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "ZTE MU5250 BD_FLYMODEMMU5250V1.0.0B27",
    "sourceHref": "",
    "cvss": {
        "score": 5.7,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MU5250",
    "version": "BD_FLYMODEMMU5250V1.0.0B27",
    "vendor": "ZTE",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}