CVE-2025-66315 | ZTE MF258K Setting privileges management

January 9, 2026 Yanac

A vulnerability classified as critical was found in ZTE MF258K ZTE_MF258kPRO_PLAY_V1.0.0B03/ZTE_MF258PRO_STD_V1.0.0B04. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation results in improper privilege management.

This vulnerability is reported as CVE-2025-66315. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-14803 | NEX-Forms Plugin up to 9.1.7 on WordPress Setting cross site scripting
CVE-2025-70974 | Alibaba Fastjson up to 1.2.47 inclusion of functionality from untrusted control sphere