High severity8.1NVD Advisory· Published Jun 19, 2020· Updated Jun 17, 2026
CVE-2020-14930
CVE-2020-14930
Description
An issue was discovered in BT CTROMS Terminal OS Port Portal CT-464. Account takeover can occur because the password-reset feature discloses the verification token. Upon a getverificationcode.jsp request, this token is transmitted not only to the registered phone number of the user account, but is also transmitted to the unauthenticated HTTP client.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- BT CTROMS Terminal OS Port Portal CT-464/BT CTROMS Terminal OS Port Portal CT-464description
Patches
Vulnerability mechanics
References
2- www.exploit-db.com/exploits/48196nvdExploitThird Party AdvisoryVDB Entry
- www.pentest.com.tr/exploits/CTROMS-Terminal-OS-Port-Portal-Password-Reset-Authentication-Bypass.htmlnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.