CVE-2020-9420

The login password of the web administrative dashboard in Arcadyan Wifi routers VRV9506JAC23 is sent in cleartext, allowing an attacker to sniff and intercept traffic to learn the administrative credentials to the router.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce	Exploit Third Party Advisory
https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:arcadyan:vrv9506jac23_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:arcadyan:vrv9506jac23:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-12-14 01:15

Updated : 2025-04-22 03:15

NVD link : CVE-2020-9420

Mitre link : CVE-2020-9420

CVE.ORG link : CVE-2020-9420

JSON object : View

Products Affected

arcadyan

vrv9506jac23
vrv9506jac23_firmware

CWE

CWE-319

Cleartext Transmission of Sensitive Information

{"id": "CVE-2020-9420", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2022-12-14T01:15:10.273", "references": [{"url": "https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-319"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-319"}]}], "descriptions": [{"lang": "en", "value": "The login password of the web administrative dashboard in Arcadyan Wifi routers VRV9506JAC23 is sent in cleartext, allowing an attacker to sniff and intercept traffic to learn the administrative credentials to the router."}, {"lang": "es", "value": "La contrase\u00f1a de inicio de sesi\u00f3n del panel administrativo web en los enrutadores Arcadyan Wifi VRV9506JAC23 se env\u00eda en texto plano, lo que permite a un atacante rastrear e interceptar el tr\u00e1fico para conocer las credenciales administrativas del enrutador."}], "lastModified": "2025-04-22T03:15:17.693", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:arcadyan:vrv9506jac23_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10232C4C-22AA-4364-BFFB-A239208DBD60"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:arcadyan:vrv9506jac23:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F08F2A89-1668-420F-BA65-2D241D986A14"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}