Lucene search
MitreCVELIST:CVE-2019-20481HistoryFeb 24, 2020 - 2:35 p.m.
CVE-2019-20481
2020-02-2414:35:42
mitre
www.cve.org
2
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
AI Score
6.5
Confidence
High
EPSS
0.003
Percentile
70.1%
In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Change Function does not require knowledge of the old password. This can be exploited in conjunction with CVE-2019-20480.
Related
nvd
nvd
CVE-2019-20481
2020-02-24 15:15:11
CVE-2019-20480
2020-02-24 15:15:11
prion
prion
Design/Logic Flaw
2020-02-24 15:15:00
Cross site request forgery (csrf)
2020-02-24 15:15:00
cve
cve
CVE-2019-20481
2020-02-24 15:15:11
CVE-2019-20480
2020-02-24 15:15:11
cvelist
cvelist
CVE-2019-20480
2020-02-24 14:35:58
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
AI Score
6.5
Confidence
High
EPSS
0.003
Percentile
70.1%
Related for CVELIST:CVE-2019-20481