CVE-2020-5686
N/A
N/A
Summary
Incorrect implementation of authentication algorithm issue in UNIVERGE SV9500 series from V1 to V7and SV8500 series from S6 to S8 allows an attacker to access the remote system maintenance feature and obtain the information by sending a specially crafted request to a specific URL.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NEC Corporation | UNIVERGE SV9500/SV8500 series | SV9500 series from V1 to V7and SV8500 series from S6 to S8 | affected |
Weaknesses
- Incorrect Implementation of Authentication Algorithm
ADP Enrichment
CVE Program Container
Additional References
- https://www.necplatforms.co.jp/en/press/security_adv.html
- https://jvn.jp/en/jp/JVN38784555/index.html
References
- https://www.necplatforms.co.jp/en/press/security_adv.html
- https://jvn.jp/en/jp/JVN38784555/index.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.