Sign-up

ID

VAR-202008-1279


TITLE

Unauthorized access vulnerability exists in Suning Intelligent Platform

Trust: 0.6

sources: CNVD: CNVD-2020-48924

DESCRIPTION

Suning Tesco Group Co., Ltd., founded on December 26, 1990, is headquartered in Nanjing. It is a leader in Chinese commercial enterprises. Its products cover traditional home appliances, consumer electronics, department stores, daily necessities, books, virtual products and other comprehensive categories. An unauthorized access vulnerability exists in the Suning Intelligent Platform, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2020-48924

IOT TAXONOMY

category:['IoT']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-48924

AFFECTED PRODUCTS

vendor:suning tesco groupmodel:intelligent platformscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2020-48924

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-48924
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2020-48924
severity: MEDIUM
baseScore: 5.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-48924

PATCH

title:Unauthorized access vulnerability exists in Suning Intelligent Platformurl:https://www.cnvd.org.cn/patchinfo/show/224361

Trust: 0.6

sources: CNVD: CNVD-2020-48924

EXTERNAL IDS

db:CNVDid:CNVD-2020-48924

Trust: 0.6

sources: CNVD: CNVD-2020-48924

SOURCES

db:CNVDid:CNVD-2020-48924

LAST UPDATE DATE

2022-05-04T09:21:41.956000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-48924date:2020-09-14T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-48924date:2020-08-16T00:00:00