|
Original release date: September 24, 2020
CVE ID CVE-2020-6875 CVSS 3.0 Base Score 5.9 Medium(AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N) Description A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access right through brute-force attacks. Affected Products and Fixes Product Name | Affected Version | Resolved Version | ZXONE 19700 SNPE | ZXONE8700V1.40R2B13_SNPE | ZXONE8700V1.40R2B21_SNPE |
Source The vulnerability was found by ZTE's internal test. Update Records September 24, 2020, initial.
Supporting team contacts 1. ZTE GCSC hotline: 0755-26770800 800-830-1118 400-830-1118 2. Product forum at ZTE Support website. ZTE PSIRT If you need to report security vulnerabilities related to ZTE products, or get ZTE product security incident response service and vulnerability information, please contact ZTE PSIRT: psirt@zte.com.cn, PGP key ID: FF095577.
|