Vulnerability Details CVE-2020-6862
V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. Unauthorized users could log in directly to obtain page information without entering a verification code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.133
EPSS Ranking 93.8%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- http://packetstormsecurity.com/files/159135/ZTE-F602W-CAPTCHA-Bypass.html
- http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1012162
- http://packetstormsecurity.com/files/159135/ZTE-F602W-CAPTCHA-Bypass.html
- http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1012162
Products affected by CVE-2020-6862
-
cpe:2.3:h:zte:f6x2w:-
-
cpe:2.3:o:zte:f6x2w_firmware:6.0.10p2t2
-
cpe:2.3:o:zte:f6x2w_firmware:6.0.10p2t5