CVE-2020-6873
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A ZTE product has a DoS vulnerability. Because the equipment couldn’t distinguish the attack packets and normal packets with valid http links, the remote attackers could use this vulnerability to cause the equipment WEB/TELNET module denial of service and make the equipment be out of management. This affects: ZXR10 2800-4_ALMPUFB(LOW), all versions up to V3.00.40.
Un producto ZTE presenta una vulnerabilidad de DoS. Debido a que el equipo no pudo distinguir los paquetes de ataque y los paquetes normales con enlaces http válidos, los atacantes remotos podrían usar esta vulnerabilidad para causar la denegación de servicio del módulo WEB/TELNET del equipo y hacer que el equipo quede fuera de administración. Esto afecta a: ZXR10 2800-4_ALMPUFB(LOW), todas las versiones hasta la V3.00.40
CVSS Scores
SSVC
- Decision:-
Timeline
- 2020-01-13 CVE Reserved
- 2020-09-01 CVE Published
- 2023-09-05 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1013403 | 2020-09-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Zte Search vendor "Zte" | Zxr10 2800-4 Almpufb\(low\) Firmware Search vendor "Zte" for product "Zxr10 2800-4 Almpufb\(low\) Firmware" | <= 3.00.40 Search vendor "Zte" for product "Zxr10 2800-4 Almpufb\(low\) Firmware" and version " <= 3.00.40" | - |
Affected
| in | Zte Search vendor "Zte" | Zxr10 2800-4 Almpufb\(low\) Search vendor "Zte" for product "Zxr10 2800-4 Almpufb\(low\)" | - | - |
Safe
|