Vulnerability Details CVE-2020-5685
UNIVERGE SV9500 series from V1 to V7and SV8500 series from S6 to S8 allows an attacker to execute arbitrary OS commands or cause a denial-of-service (DoS) condition by sending a specially crafted request to a specific URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2020-5685
-
cpe:2.3:h:nec:univerge_sv8500:-
-
cpe:2.3:h:nec:univerge_sv9500:-
-
cpe:2.3:o:nec:univerge_sv8500_firmware:s6
-
cpe:2.3:o:nec:univerge_sv8500_firmware:s8
-
cpe:2.3:o:nec:univerge_sv9500_firmware:v1
-
cpe:2.3:o:nec:univerge_sv9500_firmware:v7