Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistZteCVELIST:CVE-2020-6876
HistoryOct 26, 2020 - 3:35 p.m.

CVE-2020-6876

2020-10-2615:35:08
zte
www.cve.org
3
zte product
xss vulnerability
web module
data theft
page destruction

EPSS

0.001

Percentile

29.2%

JSON

A ZTE product is impacted by an XSS vulnerability. The vulnerability is caused by the lack of correct verification of client data in the WEB module. By inserting malicious scripts into the web module, a remote attacker could trigger an XSS attack when the user browses the web page. Then the attacker could use the vulnerability to steal user cookies or destroy the page structure. This affects: eVDC ZXCLOUD-iROSV6.03.04

CNA Affected

[
  {
    "product": "eVDC",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "ZXCLOUD-iROSV6.03.04"
      }
    ]
  }
]

Related

nvd 1
cve 1
prion 1
nvd
nvd
CVE-2020-6876
2020-10-26 16:15:13
cve
cve
CVE-2020-6876
2020-10-26 16:15:13
prion
prion
Cross site scripting
2020-10-26 16:15:00

EPSS

0.001

Percentile

29.2%

JSON
Related for CVELIST:CVE-2020-6876
nvd1cve1prion1