CVE-2026-40003 MEDIUM

CVE-2026-40003: USB-based arbitrary memory write vulnerability in ZTE ZX297520V3 soc BootROM

Vendor Zte

Product ZX297520V3 BootROM

Weakness CWE-787

Published May 7, 2026

Last update May 19, 2026

View on NVD All CVEs

CVSS base score

5.1/10

Attack vector Physical

Attack complexity High

Privileges required None

User interaction Required

Confidentiality Low

Integrity High

CVSS vector

CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L

What the vulnerability does

01Description

ZTE ZX297520V3 BootROM contains a vulnerability that allows arbitrary memory writes via USB. Attackers can exploit the lack of target address validation in the USB download mode to write data to any location in BootROM runtime memory, thereby overwriting the stack, hijacking the execution flow, bypassing the Secure Boot signature verification mechanism, and achieving unauthorized code execution.

Key dates

02Disclosure timeline

May 7, 2026 CVE published

May 19, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-40003 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/787.html

Related vulnerabilities

CVE-2026-40003: USB-based arbitrary memory write vulnerability in ZTE ZX297520V3 soc BootROM

01Description

02Disclosure timeline

03References

04Related CVE