{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-40002", "assignerOrgId": "6786b568-6808-4982-b61f-398b0d9679eb", "state": "PUBLISHED", "assignerShortName": "zte", "dateReserved": "2026-04-08T07:51:26.675Z", "datePublished": "2026-04-17T07:40:58.277Z", "dateUpdated": "2026-04-17T12:11:37.153Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "6786b568-6808-4982-b61f-398b0d9679eb", "shortName": "zte", "dateUpdated": "2026-04-17T07:40:58.277Z"}, "title": "ZTE Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations.", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-269", "description": "CWE-269: Improper Privilege Management", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-122", "descriptions": [{"lang": "en", "value": "CAPEC-122 Privilege Abuse"}]}], "affected": [{"vendor": "ZTE", "product": "Red Magic 11 Pro (NX809J)", "versions": [{"status": "affected", "version": "GEN_NEEA_NX809J V1.0.0B14MR1", "lessThanOrEqual": "V1.0.0B14MR1", "versionType": "custom"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Red Magic 11 Pro (NX809J)\u00a0contains a vulnerability that allows non-privileged applications to trigger sensitive operations. The vulnerability stems from the lack of validation for applications accessing the service interface. Exploiting this vulnerability, an attacker can write files to specific partitions and set writable system properties.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Red Magic 11 Pro (NX809J)&nbsp;contains a vulnerability that allows non-privileged applications to trigger sensitive operations. The vulnerability stems from the lack of validation for applications accessing the service interface. Exploiting this vulnerability, an attacker can write files to specific partitions and set writable system properties.</p>"}]}], "references": [{"url": "https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/8224335890517684583"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW", "baseSeverity": "MEDIUM", "baseScore": 5, "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L"}}], "credits": [{"lang": "en", "value": "Christopher Nelson", "type": "finder"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-17T12:11:30.065966Z", "id": "CVE-2026-40002", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-17T12:11:37.153Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-40002", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-17T12:11:30.065966Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-17T12:11:33.478Z"}}], "cna": {"title": "ZTE Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations.", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Christopher Nelson"}], "impacts": [{"capecId": "CAPEC-122", "descriptions": [{"lang": "en", "value": "CAPEC-122 Privilege Abuse"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "ZTE", "product": "Red Magic 11 Pro (NX809J)", "versions": [{"status": "affected", "version": "GEN_NEEA_NX809J V1.0.0B14MR1", "versionType": "custom", "lessThanOrEqual": "V1.0.0B14MR1"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/8224335890517684583"}], "x_generator": {"engine": "Vulnogram 1.0.1"}, "descriptions": [{"lang": "en", "value": "Red Magic 11 Pro (NX809J)\u00a0contains a vulnerability that allows non-privileged applications to trigger sensitive operations. The vulnerability stems from the lack of validation for applications accessing the service interface. Exploiting this vulnerability, an attacker can write files to specific partitions and set writable system properties.", "supportingMedia": [{"type": "text/html", "value": "<p>Red Magic 11 Pro (NX809J)&nbsp;contains a vulnerability that allows non-privileged applications to trigger sensitive operations. The vulnerability stems from the lack of validation for applications accessing the service interface. Exploiting this vulnerability, an attacker can write files to specific partitions and set writable system properties.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269: Improper Privilege Management"}]}], "providerMetadata": {"orgId": "6786b568-6808-4982-b61f-398b0d9679eb", "shortName": "zte", "dateUpdated": "2026-04-17T07:40:58.277Z"}}}, "cveMetadata": {"cveId": "CVE-2026-40002", "state": "PUBLISHED", "dateUpdated": "2026-04-17T12:11:37.153Z", "dateReserved": "2026-04-08T07:51:26.675Z", "assignerOrgId": "6786b568-6808-4982-b61f-398b0d9679eb", "datePublished": "2026-04-17T07:40:58.277Z", "assignerShortName": "zte"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Red Magic 11 Pro (NX809J)\u00a0contains a vulnerability that allows non-privileged applications to trigger sensitive operations. The vulnerability stems from the lack of validation for applications accessing the service interface. Exploiting this vulnerability, an attacker can write files to specific partitions and set writable system properties."}], "id": "CVE-2026-40002", "lastModified": "2026-04-17T08:16:18.120", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5.0, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 3.7, "source": "psirt@zte.com.cn", "type": "Secondary"}]}, "published": "2026-04-17T08:16:18.120", "references": [{"source": "psirt@zte.com.cn", "url": "https://support.zte.com.cn/zte-iccp-isupport-webui/bulletin/detail/8224335890517684583"}], "sourceIdentifier": "psirt@zte.com.cn", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "psirt@zte.com.cn", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-17T09:50:44.196554+00:00", "value": {"mitigation_remediation": ["Check for and install the latest firmware update released by ZTE that patches the service interface validation issue.", "If no update is available, restrict the installation of applications from unknown or untrusted sources to prevent malicious apps from triggering the vulnerability.", "Monitor device logs for unauthorized writes to system partitions or alterations of system properties, and configure alerts to detect suspicious activity."], "summary": {"action": "Assess Impact", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "ZTE Red Magic 11 Pro (NX809J) is the only device identified as affected in the current data set. No additional model or firmware version information is provided, so the impact is limited to this handset model.", "description_and_impact": "The vulnerability in ZTE Red Magic 11 Pro (NX809J) arises from inadequate validation of applications accessing a service interface, allowing non-privileged apps to invoke sensitive operations. An attacker can exploit this flaw to write files to specific partitions and set writable system properties, potentially altering core system behavior and facilitating further malicious activity. This represents a breach of the device\u2019s integrity and offers a pathway to elevate privileges or modify system configuration.", "risk_and_exploitability": "The vulnerability carries a CVSS score of 5 out of 10, indicating moderate severity. Exploit probability is not available, suggesting that widespread exploitation is currently undocumented. The attack vector appears to be local: a malicious application installed on the device can trigger the vulnerable service. While the risk is moderate, the potential for privilege escalation and system compromise is real if an attacker can install a rogue app."}}}}, "created": "2026-04-17T10:00:03.566505+00:00", "updated": "2026-04-17T10:00:03.566527+00:00", "vendors": []}