CyberSec.Space Logo
Back to CVE Browser

CVE-2020-12030

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile23.11th
PublishedSep 29, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

There is a flaw in the code used to configure the internal gateway firewall when the gateway's VLAN feature is enabled. If a user enables the VLAN setting, the internal gateway firewall becomes disabled resulting in exposure of all ports used by the gateway.

Affected Platforms (CPE)

💻
Emerson

Wireless 1410 Gateway Firmware

>= 4.6.43 and <= 4.7.84
💻
Emerson

Wireless 1420 Gateway Firmware

>= 4.6.43 and <= 4.7.84
💻
Emerson

Wireless 1552wu Gateway Firmware

>= 4.6.43 and <= 4.7.84

References & Advisories

🔗 https://us-cert.cisa.gov/ics/advisories/icsa-20-135-02
🔗 https://us-cert.cisa.gov/ics/advisories/icsa-20-135-02

Related Vulnerabilities

CVE-2020-161410.0

A Use of Hard-coded Credentials vulnerability exists in the NFX250 Series for the vSRX Virtual Network Function (VNF) instance, wh...

CVE-2020-676910.0

Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker ...

CVE-2020-677010.0

Deserialization of Untrusted Data in the BVMS Mobile Video Service (BVMS MVS) allows an unauthenticated remote attacker to execute...

CVE-2020-1184410.0

Incorrect Authorization vulnerability in Micro Focus Container Deployment Foundation component affects products: - Hybrid Cloud Ma...