Vulnerability Details CVE-2020-6881
ZTE E8810/E8820/E8822 series routers have an MQTT DoS vulnerability, which is caused by the failure of the device to verify the validity of abnormal messages. A remote attacker could connect to the MQTT server and send an MQTT exception message to the specified device, which will cause the device to deny service. This affects:<ZXHN E8810, ZXHN E8820, ZXHN E8822><E8810 V1.0.26, E8810 V2.0.1, E8820 V1.1.3L, E8820 V2.0.13, E8822 V2.0.13>
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2020-6881
-
cpe:2.3:h:zte:zxhn_e8810:-
-
cpe:2.3:h:zte:zxhn_e8820:-
-
cpe:2.3:h:zte:zxhn_e8822:-
-
cpe:2.3:o:zte:zxhn_e8810_firmware:1.0.26
-
cpe:2.3:o:zte:zxhn_e8810_firmware:2.0.1
-
cpe:2.3:o:zte:zxhn_e8820_firmware:1.1.3
-
cpe:2.3:o:zte:zxhn_e8820_firmware:2.0.13
-
cpe:2.3:o:zte:zxhn_e8822_firmware:2.0.13