ByteOS Network

NVD Vulnerability Details :

CVE-2020-36921

Awaiting Analysis

Source-disclosure@vulncheck.com

Published At-06 Jan, 2026 | 16:15

Updated At-08 Jan, 2026 | 18:09

RED-V Super Digital Signage System 5.1.1 contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive webserver log files. Attackers can visit multiple endpoints to retrieve system resources and debug log information without authentication.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	6.9	MEDIUM	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary	3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Type: Secondary

Version: 4.0

Base score: 6.9

Base severity: MEDIUM

Vector:

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Primary

Version: 3.1

Base score: 7.5

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Weaknesses

CWE ID	Type	Source
CWE-548	Primary	disclosure@vulncheck.com

CWE ID: CWE-548

Type: Primary

Source: disclosure@vulncheck.com

References

Hyperlink	Source	Resource
https://cxsecurity.com/issue/WLB-2020110130	disclosure@vulncheck.com	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/191803	disclosure@vulncheck.com	N/A
https://packetstormsecurity.com/files/160073	disclosure@vulncheck.com	N/A
https://www.red-v.tv/	disclosure@vulncheck.com	N/A
https://www.vulncheck.com/advisories/red-v-super-digital-signage-system-log-information-disclosure-vulnerability	disclosure@vulncheck.com	N/A
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5609.php	disclosure@vulncheck.com	N/A