| |
Vulnerability CVE-2020-6867
Published: 2020-04-30 Modified: 2020-05-01
| Description: |
ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is frequently called by other applications in the case of mass traffic data in the system, it will result in no response for a long time and memory overflow risk. This affects: ZENIC ONE R22b versions V16.19.10P02SP002 and V16.19.10P02SP005. |
Type:
CWE-400 (Uncontrolled Resource Consumption ('Resource Exhaustion'))
CVSS2 => (AV:L/AC:L/Au:N/C:N/I:N/A:P)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
2.1/10 |
2.9/10 |
3.9/10 |
| Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
None |
None |
Partial |
References: |
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1012842
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
