Login Sign Up

CVE-2020-6874

9.1 CRITICAL
Authentication Bypass

📋 TL;DR

This vulnerability in ZTE ZXIPTV products involves improper implementation of cryptographic algorithms, allowing remote attackers to perform account credential enumeration or brute-force password guessing attacks. It affects ZXIPTV and ZXIPTV-WEB-PV5.09.08.04 systems. Attackers can exploit weak encryption to compromise user accounts.

💻 Affected Systems

Products:
  • ZXIPTV
  • ZXIPTV-WEB-PV5.09.08.04
Versions: PV5.09.08.04 and potentially earlier versions
Operating Systems: Embedded systems running ZTE firmware
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the web interface component of ZTE IPTV systems. Default configurations are vulnerable.

📦 What is this software?

Zxiptv Firmware by Zte

View all CVEs affecting Zxiptv Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through administrative account takeover, leading to data theft, service disruption, or deployment of additional malware.

🟠

Likely Case

Unauthorized access to user accounts, potential credential theft, and lateral movement within the network.

🟢

If Mitigated

Limited impact with proper network segmentation, strong authentication controls, and monitoring in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires network access to the vulnerable service but no authentication. Attack tools for credential enumeration are commonly available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Contact ZTE for updated firmware

Vendor Advisory: http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1013463

Restart Required: Yes

Instructions:

1. Contact ZTE support for updated firmware. 2. Backup configuration. 3. Apply firmware update. 4. Restart system. 5. Verify fix.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate affected systems from untrusted networks

Access Control Restrictions

linux

Limit access to vulnerable interfaces using firewall rules

iptables -A INPUT -p tcp --dport [web_port] -s [trusted_ips] -j ACCEPT
iptables -A INPUT -p tcp --dport [web_port] -j DROP

🧯 If You Can't Patch

  • Implement strong password policies and account lockout mechanisms
  • Deploy network monitoring and intrusion detection for authentication attempts

🔍 How to Verify

Check if Vulnerable:

Check system version via web interface or CLI. If running PV5.09.08.04 or earlier, assume vulnerable.

Check Version:

Check via web interface admin panel or consult ZTE documentation for CLI commands

Verify Fix Applied:

Verify updated firmware version and test authentication mechanisms for proper encryption.

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed authentication attempts from single IP
  • Unusual authentication patterns
  • Account lockout events

Network Indicators:

  • High volume of authentication requests to IPTV web interface
  • Traffic patterns suggesting credential enumeration

SIEM Query:

source="iptv_logs" AND (event_type="auth_failure" COUNT BY src_ip > 10)

📊 Metadata

CVE ID: CVE-2020-6874
CVSS v3 Score: 9.1 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CWE: CWE-327
Published: September 1, 2020
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-6874, you might also want to check these:

CVE-2024-51478 9.9

This vulnerability in YesWiki allows attackers to recover password reset keys due to weak cryptograp...

Same vulnerability type (CWE-327)
CVE-2021-22738 9.8

This vulnerability in Schneider Electric homeLYnk and spaceLYnk systems allows attackers to brute-fo...

Same vulnerability type (CWE-327)
CVE-2025-69929 9.8

This vulnerability in N3uron Web User Interface v1.21.7-240207.1047 allows remote attackers to escal...

Same vulnerability type (CWE-327)