CVE-2026-44407

MEDIUM 4.7

Remote Denial of Service Vulnerability Exists in ZTE Cloud PC Client uSmartview

CVSS Score

4.7

EPSS Score

0.0%

EPSS Percentile

0th

A remote denial-of-service vulnerability exists in the ZTE Cloud PC client uSmartview, which may lead to memory corruption and remote denial of service.

CWE	CWE-134
Vendor	zte
Product	zxcloud irai
Published	May 7, 2026

Stay Ahead of the Next One

Get instant alerts for zte zxcloud irai

Be the first to know when new medium vulnerabilities affecting zte zxcloud irai are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

ZTE / ZXCLOUD iRAI

ZXCLOUD-iRAI-ClientV7.2X

References

NVD ↗ CVE.org ↗ EPSS Data ↗

support.zte.com.cn: https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/4783596796997009530

Credits

Runzi Zhao, Feng Ye and Ziwei Wang