EUVD-2020-29804

ID: EUVD-2020-29804

Severity: critical

CVSS v4: Not provided

CVSS v3: 10.0 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H)

CWE: None listed

Source: ENISA

Description

In ZGR TPS200 NG 2.00 firmware version and 1.01 hardware version, the firmware upload process does not perform any type of restriction. This allows an attacker to modify it and re-upload it via web with malicious modifications, rendering the device unusable.

Timestamps

Normalized: 2025-12-31T11:32:25Z UTC
Last updated: 2025-12-31T11:30:37Z UTC

References

No references provided.

VulnAI

EUVD-2020-29804

Description

Timestamps

References