CVE-2020-6870
Last modified
CVE-2020-6870 is a high-severity vulnerability rated 8/10 on the CVSS scale. The version V12.17.20T115 of ZTE U31R20 product is impacted by a design error vulnerability. An attacker could exploit the vulnerability to log in to the FTP server to tamper with the password, and illegally download, modify, upload, or delete files, causing improper operation of the network management system and equipment. EPSS estimates a 0.62% chance of exploitation in the next 30 days.
Description
The version V12.17.20T115 of ZTE U31R20 product is impacted by a design error vulnerability. An attacker could exploit the vulnerability to log in to the FTP server to tamper with the password, and illegally download, modify, upload, or delete files, causing improper operation of the network management system and equipment. This affects: NetNumenU31R20 V12.17.20T115
Metrics
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Zte | Netnumen U31 R10 Firmware | v12.17.20t115 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-6870?
How severe is CVE-2020-6870?
How do I fix CVE-2020-6870?
Are you affected by CVE-2020-6870?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST