{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T10:57:38.389","vulnerabilities":[{"cve":{"id":"CVE-2021-21732","sourceIdentifier":"psirt@zte.com.cn","published":"2021-05-19T11:15:07.757","lastModified":"2024-11-21T05:48:54.023","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A mobile phone of ZTE is impacted by improper access control vulnerability. Due to improper permission settings, third-party applications can read some files in the proc file system without authorization. Attackers could exploit this vulnerability to obtain sensitive information. This affects Axon 11 5G ZTE/CN_P725A12/P725A12:10/QKQ1.200816.002/20201116.175317:user/release-keys."},{"lang":"es","value":"Un teléfono móvil de ZTE está afectado por una vulnerabilidad de control de acceso inapropiado. Debido a una configuración de permisos inapropiada, unas aplicaciones de terceros pueden leer algunos archivos en el sistema de archivos proc sin autorización. Los atacantes podrían explotar esta vulnerabilidad para conseguir información confidencial. Esto afecta a Axon 11 5G ZTE/CN_P725A12/P725A12: 10/QKQ1.200816.002/20201116.175317: usuario/teclas de liberación"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:zte:axon_11_5g_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2021.5.1","matchCriteriaId":"8C956D21-AF7F-447D-B3C2-7C7A367B5BD5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:zte:axon_11_5g:-:*:*:*:*:*:*:*","matchCriteriaId":"0AB053B1-08C9-41C1-BD28-06A43B722C86"}]}]}],"references":[{"url":"https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015064","source":"psirt@zte.com.cn","tags":["Vendor Advisory"]},{"url":"https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1015064","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}