exploitDog

CVE-2020-6877

Опубликовано: 05 нояб. 2020

Источник: nvd

CVSS3: 8.8

CVSS2: 4

EPSS Низкий

Описание

A ZTE product is impacted by an information leak vulnerability. An attacker could use this vulnerability to obtain the authentication password of the handheld terminal and access the device illegally for operation. This affects: ZXA10 eODN V2.3P2T1

Ссылки

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1013843
Vendor Advisory
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1013843
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:zte:zxa10_eodn_firmware:2.3p2t1:*:*:*:*:*:*:*

cpe:2.3:h:zte:zxa10_eodn:-:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.00312

Низкий

8.8 High

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-v2rq-5vvg-wh5r

github

больше 3 лет назад

A ZTE product is impacted by an information leak vulnerability. An attacker could use this vulnerability to obtain the authentication password of the handheld terminal and access the device illegally for operation. This affects: ZXA10 eODN V2.3P2T1

EPSS

Процентиль: 54%

0.00312

Низкий

8.8 High

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo