Vulnerability Details CVE-2020-5550
Session fixation vulnerability in EasyBlocks IPv6 Ver. 2.0.1 and earlier, and Enterprise Ver. 2.0.1 and earlier allows remote attackers to impersonate a registered user and log in the management console, that may result in information alteration/disclosure via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.7%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 5.8
References
- https://jvn.jp/en/jp/JVN89224521/index.html
- https://www.plathome.co.jp/software/ipv6-enterprise-v2-0-2/
- https://www.plathome.co.jp/software/ipv6-v2-0-2/
- https://jvn.jp/en/jp/JVN89224521/index.html
- https://www.plathome.co.jp/software/ipv6-enterprise-v2-0-2/
- https://www.plathome.co.jp/software/ipv6-v2-0-2/
Products affected by CVE-2020-5550
-
cpe:2.3:h:plathome:easyblocks_ipv6:-
-
cpe:2.3:h:plathome:easyblocks_ipv6_enterprise:-
-
cpe:2.3:o:plathome:easyblocks_ipv6_enterprise_firmware:2.0.1
-
cpe:2.3:o:plathome:easyblocks_ipv6_firmware:2.0.1