Home

Description

There is a Denial of Service(DoS)vulnerability in the ZTE MC889A Pro product. Due to insufficient validation of the input parameters of the Short Message Service interface, allowing an attacker to exploit it to carry out a DoS attack.

PUBLISHED Reserved 2025-04-25 | Published 2025-10-27 | Updated 2025-10-27 | Assigner zte




MEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Problem types

CWE-116 Improper Encoding or Escaping of Output

Product status

Default status
unaffected

BD_STDPLMC889A PROV1.0.1B06
affected

BD_STDPLMC889A PROV1.0.1B08
affected

References

support.zte.com.cn/...ui/bulletin/detail/2594779029512220894

cve.org (CVE-2025-46583)

nvd.nist.gov (CVE-2025-46583)

Download JSON