Lucene search

MitreCVE-2020-23727

HistoryDec 03, 2020 - 6:15 p.m.

CVE-2020-23727

2020-12-0318:15:11

mitre

web.nvd.nist.gov

cve-2020-23727

antiy zhijia

terminal defense system

denial of service

vulnerability

nvd

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.4

Confidence

High

EPSS

Percentile

5.1%

JSON

There is a local denial of service vulnerability in the Antiy Zhijia Terminal Defense System 5.0.2.10121559 and an attacker can cause a computer crash (BSOD).

Affected configurations

Nvd

Node

antiyantiy_zhijia_terminal_defense_systemMatch5.0.2.10121559

VendorProductVersionCPE
antiyantiy_zhijia_terminal_defense_system5.0.2.10121559cpe:2.3:a:antiy:antiy_zhijia_terminal_defense_system:5.0.2.10121559:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
antiy	antiy_zhijia_terminal_defense_system	5.0.2.10121559	cpe:2.3:a:antiy:antiy_zhijia_terminal_defense_system:5.0.2.10121559:::::::*

References

github.com/y5s5k5/CVE-2020-23727

github.com/y5s5k5/POCtemp3

www.antiy.com

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.4

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for CVE-2020-23727