Sign-up

ID

VAR-201810-1611


TITLE

Authentication Bypass Vulnerability in Sunell Camera

Trust: 0.6

sources: CNVD: CNVD-2018-19108

DESCRIPTION

The Sunell camera is a camera produced by Shenzhen Jingyang Technology Co., Ltd. An authentication bypass vulnerability exists in the Sunell camera. Attackers can use the vulnerability to add administrators, modify configurations, and obtain web administrator permissions.

Trust: 0.6

sources: CNVD: CNVD-2018-19108

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2018-19108

AFFECTED PRODUCTS

vendor:jingyangmodel:sunell camera v321 1scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2018-19108

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2018-19108
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2018-19108
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2018-19108

PATCH

title:Unauthorized Access Vulnerability in Sunell Cameraurl:https://www.cnvd.org.cn/patchinfo/show/137891

Trust: 0.6

sources: CNVD: CNVD-2018-19108

EXTERNAL IDS

db:CNVDid:CNVD-2018-19108

Trust: 0.6

sources: CNVD: CNVD-2018-19108

SOURCES

db:CNVDid:CNVD-2018-19108

LAST UPDATE DATE

2022-05-04T08:36:57.873000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2018-19108date:2018-09-19T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2018-19108date:2018-10-01T00:00:00