CVE-2020-6867
MEDIUMZTE ZENIC ONE R22b V16.19.10P02SP002 and V16.19.10P02SP005 - Memory Overflow via RPC Calls
Title source: llmDescription
ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is frequently called by other applications in the case of mass traffic data in the system, it will result in no response for a long time and memory overflow risk. This affects: ZENIC ONE R22b versions V16.19.10P02SP002 and V16.19.10P02SP005.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1012842
Scores
CVSS v3
5.5
EPSS
0.0005
EPSS Percentile
15.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (2)
zte/zenic_one_r22b
6.19.10p02sp005
zte/zenic_one_r22b
16.19.10p02sp002
Published
Apr 30, 2020
Tracked Since
Feb 18, 2026