CVE-2019-20481

CVSS 4.6 MEDIUMEPSS 0.6%

In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Change Function does not require knowledge of the old password. This can be exploited in conjunction with CVE-2019-20480.

CVSS:3.0/AC:H/AV:N/A:L/C:L/I:L/PR:L/S:U/UI:R

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cert.vde.com/en-us/advisories/vde-2019-010