Primary

Context

ZTE Cloud PC Client uSmartview OpenSSL Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in the ZTE Cloud PC client uSmartview, specifically within the OpenSSL configuration file (openssl.cnf). This vulnerability allows an attacker to execute arbitrary code locally and escalate privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation and execution of arbitrary code on the affected system.

Remediation

Users can upgrade to ZXCLOUD-iRAI-ClientV7.25.43 to address this vulnerability. For assistance, contact the ZTE Global Customer Support Center.

Added: May 7, 2026, 4:43 AM

Updated: May 7, 2026, 4:43 AM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

10.0

exploitability

3.5

remediation

0.0

relevance

7.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

10.0

exploitability

3.5

remediation

0.0

relevance

7.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ZTE Cloud PC Client uSmartview OpenSSL Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

ZTE Cloud PC client uSmartview

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating