CVE-2020-12030

Summary

There is a flaw in the code used to configure the internal gateway firewall when the gateway's VLAN feature is enabled. If a user enables the VLAN setting, the internal gateway firewall becomes disabled resulting in exposure of all ports used by the gateway.

Affected Software

VendorProductVersion RangeStatus
EmersonWireless 1410 Gateway4.6.43 <= 4.7.84affected
EmersonWireless 1420 Gateway4.6.43 <= 4.7.84affected
EmersonWireless 1552WU Gateway4.6.43 <= 4.7.84affected

Weaknesses

  • CWE-284: IMPROPER ACCESS CONTROL CWE-284

ADP Enrichment

CVE Program Container

Additional References

References