Lucene search

[email protected]NVD:CVE-2020-8975

HistoryOct 17, 2022 - 10:15 p.m.

CVE-2020-8975

2022-10-1722:15:10

CWE-200

CWE-201

[email protected]

web.nvd.nist.gov

cve-2020-8975

remote attacker

web application

sensitive information

system access

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.002 Low

EPSS

Percentile

57.3%

JSON

ZGR TPS200 NG in its 2.00 firmware version and 1.01 hardware version, allows a remote attacker with access to the web application and knowledge of the routes (URIs) used by the application, to access sensitive information about the system.

Affected configurations

NVD

Node

zigorzgr_tps200_ngMatch1.01

AND

zigorzgr_tps200_ng_firmwareMatch2.00

References

www.incibe-cert.es/en/early-warning/ics-advisories/multiple-vulnerabilities-zgr-tps200-ng

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.002 Low

EPSS

Percentile

57.3%

JSON

Related for NVD:CVE-2020-8975

prion1 cve1 cvelist1