Sign-up

ID

VAR-201911-1946


TITLE

Weak password vulnerability in streaming media management server

Trust: 0.6

sources: CNVD: CNVD-2019-40285

DESCRIPTION

The streaming media server is the core system of the streaming media application and the key platform for operators to provide video services to users. The main function of the streaming media server is to collect, cache, schedule, transmit and play streaming media content. A weak password vulnerability exists in the streaming media management server, and an attacker can use this vulnerability to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2019-40285

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2019-40285

AFFECTED PRODUCTS

vendor:hikvision digitalmodel:streaming media management serverscope:eqversion:v4.3.0

Trust: 0.6

sources: CNVD: CNVD-2019-40285

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2019-40285
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2019-40285
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2019-40285

PATCH

title:Weak password vulnerability in streaming media management serverurl:https://www.cnvd.org.cn/patchinfo/show/189873

Trust: 0.6

sources: CNVD: CNVD-2019-40285

EXTERNAL IDS

db:CNVDid:CNVD-2019-40285

Trust: 0.6

sources: CNVD: CNVD-2019-40285

SOURCES

db:CNVDid:CNVD-2019-40285

LAST UPDATE DATE

2022-05-04T09:33:07.827000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2019-40285date:2019-11-18T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2019-40285date:2019-11-10T00:00:00