Lucene search

[email protected]CVE-2020-5548

HistoryApr 01, 2020 - 12:15 p.m.

CVE-2020-5548

2020-04-0112:15:15

[email protected]

web.nvd.nist.gov

yamaha

router

firewall

dos

cve-2020-5548

nvd

security

vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.6%

JSON

Yamaha LTE VoIP Router(NVR700W firmware Rev.15.00.15 and earlier), Yamaha Gigabit VoIP Router(NVR510 firmware Rev.15.01.14 and earlier), Yamaha Gigabit VPN Router(RTX810 firmware Rev.11.01.33 and earlier, RTX830 firmware Rev.15.02.09 and earlier, RTX1200 firmware Rev.10.01.76 and earlier, RTX1210 firmware Rev.14.01.33 and earlier, RTX3500 firmware Rev.14.00.26 and earlier, and RTX5000 firmware Rev.14.00.26 and earlier), Yamaha Broadband VoIP Router(NVR500 firmware Rev.11.00.38 and earlier), and Yamaha Firewall(FWX120 firmware Rev.11.03.27 and earlier) allow remote attackers to cause a denial of service via unspecified vectors.

Affected configurations

NVD

Node

yamahartx830_firmwareRange≤15.02.09

AND

yamahartx830Match-

Node

yamahanvr510_firmwareRange≤15.01.14

AND

yamahanvr510Match-

Node

yamahanvr700w_firmwareRange≤15.00.15

AND

yamahanvr700wMatch-

Node

yamahartx1210_firmwareRange≤14.01.33

AND

yamahartx1210Match-

Node

yamahartx5000_firmwareRange≤14.00.26

AND

yamahartx5000Match-

Node

yamahartx3500_firmwareRange≤14.00.26

AND

yamahartx3500Match-

Node

yamahafwx120_firmwareRange≤11.03.27

AND

yamahafwx120Match-

Node

yamahartx810_firmwareRange≤11.01.33

AND

yamahartx810Match-

Node

yamahanvr500_firmwareRange≤11.00.38

AND

yamahanvr500Match-

Node

yamahartx1200_firmwareRange≤10.01.76

AND

yamahartx1200Match-

CPENameOperatorVersion
yamaha:rtx830_firmwareyamaha rtx830 firmwarele15.02.09

CPE	Name	Operator	Version
yamaha:rtx830_firmware	yamaha rtx830 firmware	le	15.02.09

CNA Affected

[
  {
    "product": "Yamaha network devices",
    "vendor": "Yamaha Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Yamaha LTE VoIP Router(NVR700W firmware Rev.15.00.15 and earlier), Yamaha Gigabit VoIP Router(NVR510 firmware Rev.15.01.14 and earlier), Yamaha Gigabit VPN Router(RTX810 firmware Rev.11.01.33 and earlier, RTX830 firmware Rev.15.02.09 and earlier, RTX1200 firmware Rev.10.01.76 and earlier, RTX1210 firmware Rev.14.01.33 and earlier, RTX3500 firmware Rev.14.00.26 and earlier, and RTX5000 firmware Rev.14.00.26 and earlier), Yamaha Broadband VoIP Router(NVR500 firmware Rev.11.00.38 and earlier), and Yamaha Firewall(FWX120 firmware Rev.11.03.27 and earlier)"
      }
    ]
  }
]

References

www.rtpro.yamaha.co.jp/RT/FAQ/Security/JVN38732359.html

jvn.jp/en/jp/JVN38732359/index.html

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.6%

JSON

Related for CVE-2020-5548

nvd1 jvn1 prion1 cvelist1