Sign-up

ID

VAR-202009-1671


TITLE

Unauthorized access vulnerability exists in FX equipment of Shenzhen Xingfuxing Technology Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2020-48672

DESCRIPTION

Shenzhen Xing Fusion Technology Co., Ltd. was established in July 2018. The company's business scope includes: information technology, computer hardware and software and peripheral equipment, network systems, communication engineering, automotive technology, biological engineering and biological products. An unauthorized access vulnerability exists in the FX device of Shenzhen Xingfuxing Technology Co., Ltd., which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2020-48672

IOT TAXONOMY

category:['IoT']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-48672

AFFECTED PRODUCTS

vendor:xing fusionmodel:fx equipmentscope:eqversion:v3.1.4

Trust: 0.6

sources: CNVD: CNVD-2020-48672

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-48672
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2020-48672
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-48672

PATCH

title:Unauthorized access vulnerability exists in FX equipment of Shenzhen Xingfuxing Technology Co., Ltd.url:https://www.cnvd.org.cn/patchinfo/show/227483

Trust: 0.6

sources: CNVD: CNVD-2020-48672

EXTERNAL IDS

db:CNVDid:CNVD-2020-48672

Trust: 0.6

sources: CNVD: CNVD-2020-48672

SOURCES

db:CNVDid:CNVD-2020-48672

LAST UPDATE DATE

2022-05-04T08:33:54.991000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-48672date:2020-08-27T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-48672date:2020-09-10T00:00:00