Vulnerabilities > CVE-2019-20026 - Unspecified vulnerability in NEC Sv9100 Firmware 7.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

nec

NVD

Published: 2020-07-29

Updated: 2021-07-21

Summary

The WebPro interface in NEC SV9100 software releases 7.0 or higher allows unauthenticated remote attackers to reset all existing usernames and passwords to default values via a crafted request.

Vulnerable Configurations

Part	Description	Count
OS	Nec NEC Sv9100 Firmware 7.0	1
Hardware	Nec NEC Sv9100 -	1

References

https://shadytel.su/files/nec_cve.txt