CVE-2022-39066

Published: 2022-11-22T17:15Z

Last Modified: 2024-11-21T07:17Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

There is a SQL injection vulnerability in ZTE MF286R. Due to insufficient validation of the input parameters of the phonebook interface, an authenticated attacker could use the vulnerability to execute arbitrary SQL injection. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt