NVD HIGH: CVE-2026-40004 — There exists an openssl.cnf privilege escalation vulnerability in ZTE Cloud PC c...

Thursday, May 7, 2026 at 04:16 AM UTC·Source: NIST NVD

Updated: Wednesday, May 13, 2026 at 08:00 PM UTC

Executive Summary

There exists an openssl.cnf privilege escalation vulnerability in ZTE Cloud PC client uSmartview. An attacker can execute arbitrary code locally and escalate privileges.

Analysis

There exists an openssl.cnf privilege escalation vulnerability in ZTE Cloud PC client uSmartview. An attacker can execute arbitrary code locally and escalate privileges. CVSS Score: 5.5. Published: 2026-05-07T04:16:23.073.

Indicators of Compromise (1)

CVE (1)

CVE-2026-40004

NVD MITRE CVE

Source Attribution

Originally published by NIST NVD on May 7, 2026. Verified by: NIST.

Related Threats

LOWVulnerabilityNEW

CMC Markets launches spread-betting account for retail clients

CMC Markets (“CMC”), a FTSE 250 company and global leader in multi-asset online trading and investing, has launched Spectre for retail clients, following strong demand after the product was initially introduced for professional traders.

Just nowFinextra

MEDIUMVulnerabilityNEW

Zepz joins NCA efforts to identify financial signals linked to child sexual abuse

Zepz, the global payments group behind WorldRemit and Sendwave, today announced their participation in a National Economic Crime Centre (NECC) Public Private Partnership (PPP) Cell focused on combatting child sexual abuse (CSA).

Just nowFinextra

MEDIUMVulnerabilityNEW

PRA consults on ring-fencing reforms

The Prudential Regulation Authority (PRA) has today announced plans to consult on reforming rules around shared operational services for ring-fenced banks.

8m agoFinextra