Description
Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations. The vulnerability stems from the lack of validation for applications accessing the service interface. Exploiting this vulnerability, an attacker can write files to specific partitions and set writable system properties.
Published: 2026-04-17
Score: 5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Assess Impact
AI Analysis

Impact

The vulnerability in ZTE Red Magic 11 Pro (NX809J) arises from inadequate validation of applications accessing a service interface, allowing non-privileged apps to invoke sensitive operations. An attacker can exploit this flaw to write files to specific partitions and set writable system properties, potentially altering core system behavior and facilitating further malicious activity. This represents a breach of the device’s integrity and offers a pathway to elevate privileges or modify system configuration.

Affected Systems

ZTE Red Magic 11 Pro (NX809J) is the only device identified as affected in the current data set. No additional model or firmware version information is provided, so the impact is limited to this handset model.

Risk and Exploitability

The vulnerability carries a CVSS score of 5 out of 10, indicating moderate severity. Exploit probability is not available, suggesting that widespread exploitation is currently undocumented. The attack vector appears to be local: a malicious application installed on the device can trigger the vulnerable service. While the risk is moderate, the potential for privilege escalation and system compromise is real if an attacker can install a rogue app.

Generated by OpenCVE AI on April 17, 2026 at 09:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check for and install the latest firmware update released by ZTE that patches the service interface validation issue.
  • If no update is available, restrict the installation of applications from unknown or untrusted sources to prevent malicious apps from triggering the vulnerability.
  • Monitor device logs for unauthorized writes to system partitions or alterations of system properties, and configure alerts to detect suspicious activity.

Generated by OpenCVE AI on April 17, 2026 at 09:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 17 Apr 2026 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Zte
Zte red Magic 11 Pro
Vendors & Products Zte
Zte red Magic 11 Pro

Fri, 17 Apr 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 17 Apr 2026 08:15:00 +0000

Type Values Removed Values Added
Description Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations. The vulnerability stems from the lack of validation for applications accessing the service interface. Exploiting this vulnerability, an attacker can write files to specific partitions and set writable system properties.
Title ZTE Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations.
Weaknesses CWE-269
References
Metrics cvssV3_1

{'score': 5, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L'}

Subscriptions

Zte Red Magic 11 Pro
cve-icon MITRE

Status: PUBLISHED

Assigner: zte

Published:

Updated: 2026-04-17T12:11:37.153Z

Reserved: 2026-04-08T07:51:26.675Z

Link: CVE-2026-40002

cve-icon Vulnrichment

Updated: 2026-04-17T12:11:33.478Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-17T08:16:18.120

Modified: 2026-04-17T15:13:15.930

Link: CVE-2026-40002

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-17T20:35:29Z

Weaknesses