CVE-2020-6875
CRITICALZTE ZXONE 19700 SNPE Firmware - Unauthenticated Access Control Bypass
Title source: llmDescription
A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access right through brute-force attacks. This affects: <ZXONE 19700 SNPE><ZXONE8700V1.40R2B13_SNPE>
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1013643
Scores
CVSS v3
9.8
EPSS
0.0026
EPSS Percentile
49.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-306
Status
published
Products (1)
zte/zxone_19700_snpe_firmware
zxone8700v1.40r2b13_snpe
Published
Oct 05, 2020
Tracked Since
Feb 18, 2026