CVE-2020-6870

EPSS 0.6%

Vexday Risk Score

3Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS —EPSS 0.6%KEV nãoPoC —Patch —

Ciclo de vida

24 jun 2020Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

The version V12.17.20T115 of ZTE U31R20 product is impacted by a design error vulnerability. An attacker could exploit the vulnerability to log in to the FTP server to tamper with the password, and illegally download, modify, upload, or delete files, causing improper operation of the network management system and equipment. This affects: NetNumenU31R20 V12.17.20T115

Productos afectados

ZTE · NetNumenU31R20

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1013043