admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2020/CVE-2020-116xx/CVE-2020-11623.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

145 lines
4.6 KiB
JSON
Raw Blame History

{
"id": "CVE-2020-11623",
"sourceIdentifier": "cve@mitre.org",
"published": "2020-07-23T20:15:11.567",
"lastModified": "2020-07-28T19:01:37.280",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. An attacker with physical access to the UART interface could access additional diagnostic and configuration functionalities as well as the camera's bootloader. Successful exploitation could compromise confidentiality, integrity, and availability of the affected system. It could even render the device inoperable."
},
{
"lang": "es",
"value": "Se detect\u00f3 un problema en AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 y Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. Un atacante con acceso f\u00edsico a la interfaz UART podr\u00eda acceder a funciones adicionales de diagn\u00f3stico y configuraci\u00f3n, as\u00ed como al cargador de arranque de la c\u00e1mara. Una explotaci\u00f3n con \u00e9xito podr\u00eda comprometer la confidencialidad, integridad y disponibilidad del sistema afectado. Incluso podr\u00eda dejar el dispositivo inoperable"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "PHYSICAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 0.9,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"accessVector": "LOCAL",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2
},
"baseSeverity": "HIGH",
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:avertx:hd838_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7B511526-D9AF-41D3-8C58-ED591FB6D28A"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:avertx:hd838:-:*:*:*:*:*:*:*",
"matchCriteriaId": "02958C46-401D-478F-A217-BCA0B0E4899F"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:avertx:hd438_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "79C42137-9911-47AC-B051-5FAC413711AD"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:avertx:hd438:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FF06CB88-3801-4319-93D3-285C4CBC6F8F"
}
]
}
]
}
],
"references": [
{
"url": "https://unit42.paloaltonetworks.com/avertx-ip-cameras-vulnerabilities/",
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink