Vulnerability Description
A Directory Traversal vulnerability exists in ATX miniCMTS200a Broadband Gateway through 2.0 and Pico CMTS through 2.0. Successful exploitation of this vulnerability would allow an unauthenticated attacker to retrieve administrator credentials by sending a malicious POST request.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Atx | Minicmts200A Firmware | <= 2.0 |
| Atx | Minicmts200A | - |
Related Weaknesses (CWE)
References
- https://atx.com/products/commercial-services-gateways/minicmts200a-broadband-gatProductVendor Advisory
- https://www.exploit-db.com/exploits/49124ExploitThird Party AdvisoryVDB Entry
- https://atx.com/products/commercial-services-gateways/minicmts200a-broadband-gatProductVendor Advisory
- https://www.exploit-db.com/exploits/49124ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2020-28993?
CVE-2020-28993 is a vulnerability with a CVSS score of 7.5 (HIGH). A Directory Traversal vulnerability exists in ATX miniCMTS200a Broadband Gateway through 2.0 and Pico CMTS through 2.0. Successful exploitation of this vulnerability would allow an unauthenticated att...
How severe is CVE-2020-28993?
CVE-2020-28993 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-28993?
Check the references section above for vendor advisories and patch information. Affected products include: Atx Minicmts200A Firmware, Atx Minicmts200A.