|
Original release date: Auguse 25, 2020 CVE ID CVE-2020-6874 CVSS 3.1 Base Score 3.3 Low(AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N) Description A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability to account credential enumeration attack or brute-force attack for password guessing. Affected Products and Fixes Product Name | Affected Version | Resolved Version | ZXIPTV | ZXIPTV-WEB-PV5.09.08.04 | ZXIPTV-WEB-PV5.09.08.04P3 or later |
Source The vulnerability was found by ZTE's internal test. Update Records August 25, 2020, initial. Supporting team contacts 1. ZTE GCSC hotline: 0755-26770800 800-830-1118 400-830-1118 2. Product forum at ZTE Support website. ZTE PSIRT If you need to report security vulnerabilities related to ZTE products, or get ZTE product security incident response service and vulnerability information, please contact ZTE PSIRT: psirt@zte.com.cn, PGP key ID: FF095577.
|