CVE-2020-15054

8.8HIGH

Key Information:

Vendor: Tp-link
Status: Tl-ps310u Firmware
Vendor: CVE Published:; 7 August 2020

Summary

TP-Link USB Network Server TL-PS310U devices before 2.079.000.t0210 allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic.

References

https://research.hisolutions.com/2020/05/critical-vulnera...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 7, 2020
Vulnerability Reserved
Jun 25, 2020