ZTE UACLogin Business Logic Vulnerability Allowing Exploitation of Application Functions

Vulnerability

A business logic vulnerability has been identified in ZTE UACLogin, allowing attackers to misuse legitimate application functions in unexpected ways. This deviation from intended functionality can be exploited to conduct malicious activities.

Impact

Exploitation of this vulnerability could lead to unauthorized actions within the application, allowing attackers to manipulate features or processes in a way that was not intended by the developers.

Added: May 26, 2026, 5:11 PM

Updated: May 26, 2026, 5:11 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ZTE UACLogin Business Logic Vulnerability Allowing Exploitation of Application Functions

Vulnerability

Impact

Affected Products

ZTE ICCP iSupport WebUI

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating