Vulnerability in Zgr Tps200 Ng
CVE-2020-8973
ZGR TPS200 NG in its 2.00 firmware version and 1.01 hardware version, does not properly accept specially constructed requests. This allows an attacker with access to the network where the affected asset is located, to operate and change se…
EPSS: 0.004 (34.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.3 (Critical). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N.
Affected products
- Zgr Tps200 Ng — versions 2.00 firmware version 2.00, 1.01 hardware version 1.01
- Zigor Zgr_tps200_ng — versions 1.01
- Zigor Zgr_tps200_ng_firmware — versions 2.00
Weakness classification (CWE)
Public proof-of-concept exploits
References
Frequently asked questions
- What is CVE-2020-8973?
- CVE-2020-8973 is a critical-severity vulnerability in Zgr Tps200 Ng, classified under Improper Access Control. CVSS score: 9.3/10. Published 2022-10-17.
- How severe is CVE-2020-8973?
- Critical severity. CVSS v3 base score is 9.3 out of 10.
- Is CVE-2020-8973 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.