Lucene search

[email protected]NVD:CVE-2020-6864

HistoryFeb 27, 2020 - 5:15 p.m.

CVE-2020-6864

2020-02-2717:15:11

[email protected]

web.nvd.nist.gov

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

46.5%

JSON

ZTE E8820V3 router product is impacted by an information leak vulnerability. Attackers could use this vulnerability to to gain wireless passwords. After obtaining the wireless password, the attacker could collect information and attack the router.

Affected configurations

Nvd

Node

ztee8820v3Match-

AND

ztee8820v3_firmwareRange<3.1.0.1000.5

VendorProductVersionCPE
ztee8820v3-cpe:2.3:h:zte:e8820v3:-:*:*:*:*:*:*:*
ztee8820v3_firmware*cpe:2.3:o:zte:e8820v3_firmware:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
zte	e8820v3	-	cpe:2.3:h:zte:e8820v3:-:::::::*
zte	e8820v3_firmware	*	cpe:2.3:o:zte:e8820v3_firmware::::::::

References

support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1012382

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

46.5%

JSON

Related for NVD:CVE-2020-6864

cvelist1 prion1 cve1