Lucene search

K
cve[email protected]CVE-2020-10231
HistoryApr 01, 2020 - 2:15 p.m.

CVE-2020-10231

2020-04-0114:15:14
CWE-476
web.nvd.nist.gov
63
cve-2020-10231
tp-link
nc200
nc210
nc220
nc230
nc250
nc260
nc450
security vulnerability
nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.6 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.8%

TP-Link NC200 through 2.1.8_Build_171109, NC210 through 1.0.9_Build_171214, NC220 through 1.3.0_Build_180105, NC230 through 1.3.0_Build_171205, NC250 through 1.3.0_Build_171205, NC260 through 1.5.1_Build_190805, and NC450 through 1.5.0_Build_181022 devices allow a remote NULL Pointer Dereference.

Affected configurations

NVD
Node
tp-linknc450_firmwareMatch1.1.1160928
OR
tp-linknc450_firmwareMatch1.1.2161013
OR
tp-linknc450_firmwareMatch1.1.6161124
OR
tp-linknc450_firmwareMatch1.5.0181022
AND
tp-linknc450Match-
Node
tp-linknc260_firmwareMatch1.0.5160804
OR
tp-linknc260_firmwareMatch1.0.6161114
OR
tp-linknc260_firmwareMatch1.5.1190805
AND
tp-linknc260Match-
Node
tp-linknc250_firmwareMatch1.3.0171205
AND
tp-linknc250Match-
Node
tp-linknc230_firmwareMatch1.3.0171205
AND
tp-linknc230Match-
Node
tp-linknc220_firmwareMatch1.1.12160321_a
OR
tp-linknc220_firmwareMatch1.1.12160321_b
OR
tp-linknc220_firmwareMatch1.1.14161219
OR
tp-linknc220_firmwareMatch1.2.0170516
OR
tp-linknc220_firmwareMatch1.3.0180105
AND
tp-linknc220Match-
Node
tp-linknc210_firmwareMatch1.0.9171214
AND
tp-linknc210Match-
Node
tp-linknc200_firmwareMatch2.1.6160108_a
OR
tp-linknc200_firmwareMatch2.1.6160108_b
OR
tp-linknc200_firmwareMatch2.1.7160315_a
OR
tp-linknc200_firmwareMatch2.1.7160315_b
OR
tp-linknc200_firmwareMatch2.1.8171109
AND
tp-linknc200Match-

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.6 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.8%

Related for CVE-2020-10231