CVE-2020-6880
N/A
N/A
Summary
A ZXELINK wireless controller has a SQL injection vulnerability. A remote attacker does not need to log in. By sending malicious SQL statements, because the device does not properly filter parameters, successful use can obtain management rights. This affects: ZXV10 W908 all versions before MIPS_A_1022IPV6R3T6P7Y20.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ZXV10 W908 | all versions before MIPS_A_1022IPV6R3T6P7Y20 | affected |
Weaknesses
- SQL injection
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.