Sign-up

ID

VAR-201709-1252


TITLE

Shenzhen Huanghe Digital Histream Product Network Camera Has Unauthorized Access Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2017-23397

DESCRIPTION

Histream network cameras provide customers with complete network video surveillance products and overall solutions. An unauthorized access vulnerability exists in the Shenzhen Huanghe Digital Histream product network camera. Attackers can use this vulnerability to directly obtain the management username and password, and log in to the device monitoring camera directly.

Trust: 0.6

sources: CNVD: CNVD-2017-23397

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2017-23397

AFFECTED PRODUCTS

vendor:huanghe digitalmodel:histream network camerascope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2017-23397

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2017-23397
value: HIGH

Trust: 0.6

CNVD: CNVD-2017-23397
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2017-23397

PATCH

title:Shenzhen Huanghe Digital Histream Network Camera Has Design Vulnerabilitiesurl:https://www.cnvd.org.cn/patchinfo/show/99820

Trust: 0.6

sources: CNVD: CNVD-2017-23397

EXTERNAL IDS

db:CNVDid:CNVD-2017-23397

Trust: 0.6

sources: CNVD: CNVD-2017-23397

SOURCES

db:CNVDid:CNVD-2017-23397

LAST UPDATE DATE

2022-05-04T09:17:19.112000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2017-23397date:2017-09-05T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2017-23397date:2017-09-22T00:00:00