Access control failure means that an application does not effectively check user access permissions, so that unauthorized users can access system data beyond th…

CVE-2026-49002 describes an access control failure vulnerability that allows unauthorized users to bypass permission checks and access system data beyond their authorized scope. The vulnerability enables attackers to view and modify configuration information that should be restricted. This affects ZTE products and represents a significant security risk due to the potential for privilege escalation and unauthorized data access. The vulnerability has been assigned a high severity rating due to the potential impact on system security and data integrity.