๐ CVE-2020-15331 | ZyXEL CloudCNM SecuManager 3.1.0/3.1.1 axess OAUTH_SECRET_KEY hard-coded key
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in ZyXEL CloudCNM SecuManager 3.1.0/3.1.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /opt/axess/etc/default/axess. The manipulation of the argument OAUTH_SECRET_KEY leads to use of hard-coded cryptographic key . This vulnerability is known as CVE-2020-15331. Access to the local network is required for this attack to succeed. There is no exploit available. ...