CVE-2020-8975

Summary

ZGR TPS200 NG in its 2.00 firmware version and 1.01 hardware version, allows a remote attacker with access to the web application and knowledge of the routes (URIs) used by the application, to access sensitive information about the system.

Affected Software

VendorProductVersion RangeStatus
ZGRZGR TPS200 NG2.00 firmware version 2.00affected
ZGRZGR TPS200 NG1.01 hardware version 1.01affected

Weaknesses

  • CWE-201: CWE-201: Insertion of Sensitive Information Into Sent Data

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References