Vulnerabilities > CVE-2020-6862 - Incorrect Resource Transfer Between Spheres vulnerability in ZTE F6X2W Firmware 6.0.10P2T2/6.0.10P2T5

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
zte
CWE-669
NVD
Published: 2020-01-17
Updated: 2022-04-26

Summary

V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. Unauthorized users could log in directly to obtain page information without entering a verification code.

Vulnerable Configurations

Part Description Count
OS
Zte
2
Hardware
Zte
1

Common Weakness Enumeration (CWE)

References