CVE-2020-20183
Authorization Bypass Through User-Controlled Key (CWE-639)
Published: Dec 14, 2020 / Updated: 40mo ago

010

CVSS 7.5EPSS 0.17%High

CVE info copied to clipboard

Insecure direct object reference vulnerability in Zyxel’s P1302-T10 v3 with firmware version 2.00(ABBX.3) and earlier allows attackers to gain privileges and access certain admin pages.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Timeline

First Article

Feedly found the first article mentioning CVE-2020-20183. See article

Dec 14, 2020 at 9:28 PM / web.nvd.nist.gov

EPSS

EPSS Score was set to: 0.17% (Percentile: 53.4%)

Sep 25, 2023 at 5:24 AM

Affected Systems

Zyxel/p1302-t10_v3_firmware

+null more

Patches

www.zyxel.com

+null more

CVSS V3.1

Attack Vector:Network

Attack Complexity:Low

Privileges Required:None

User Interaction:None

Scope:Unchanged

Confidentiality:High

Integrity:None

Availability Impact:None

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI

Feedly Threat Intelligence 30-day free trial

CVE-2020-20183Authorization Bypass Through User-Controlled Key (CWE-639)Published: Dec 14, 2020 / Updated: 40mo ago