Sign-up

ID

VAR-202002-1686


TITLE

PEMS-6806AD/T has an information disclosure vulnerability

Trust: 0.6

sources: CNVD: CNVD-2020-12845

DESCRIPTION

PEMS-6806AD/T is a high-performance 32-bit ARM processor independently developed by Shijiazhuang Hejia Technology Co., Ltd. Based on an embedded Linux platform, it integrates data collection, processing, storage, query, event alarm, control, and network communication. A new generation of monitoring host-embedded monitoring host. PEMS-6806AD/T has an information disclosure vulnerability. Attackers can use the vulnerability to obtain sensitive information of the affected device.

Trust: 0.6

sources: CNVD: CNVD-2020-12845

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-12845

AFFECTED PRODUCTS

vendor:shijiazhuang hejiamodel:pems6806/ad-tscope:eqversion:2.1.8

Trust: 0.6

sources: CNVD: CNVD-2020-12845

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-12845
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2020-12845
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-12845

PATCH

title:Information disclosure vulnerabilities in the dynamic environment monitoring systemurl:https://www.cnvd.org.cn/patchinfo/show/196845

Trust: 0.6

sources: CNVD: CNVD-2020-12845

EXTERNAL IDS

db:CNVDid:CNVD-2020-12845

Trust: 0.6

sources: CNVD: CNVD-2020-12845

SOURCES

db:CNVDid:CNVD-2020-12845

LAST UPDATE DATE

2022-05-04T09:28:17.383000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-12845date:2020-03-17T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-12845date:2020-02-24T00:00:00