CVE-2020-6863

ZTE E8820V3 router product is impacted by a permission and access control vulnerability. Attackers could use this vulnerability to tamper with DDNS parameters and send DoS attacks on the specified URL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
zteCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
VendorProductVersion
ztee8820v3_firmware
𝑥
< 3.1.0.1000.5
𝑥
= Vulnerable software versions
References
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1012382
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1012382