Sign-up

ID

VAR-202104-2042


TITLE

A directory traversal vulnerability exists in the MSS streaming media server of Suzhou Keda Technology Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2021-21542

DESCRIPTION

Suzhou Keda Technology Co., Ltd. is a provider of video and security products and solutions. It is committed to helping various government and corporate customers solve visual communication and management problems with video conferencing, video surveillance and video application solutions. The MSS streaming media server of Suzhou Keda Technology Co., Ltd. has a directory traversal vulnerability. Attackers can use the vulnerability to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-21542

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-21542

AFFECTED PRODUCTS

vendor:kedamodel:mss streaming media serverscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2021-21542

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-21542
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-21542
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-21542

EXTERNAL IDS

db:CNVDid:CNVD-2021-21542

Trust: 0.6

sources: CNVD: CNVD-2021-21542

SOURCES

db:CNVDid:CNVD-2021-21542

LAST UPDATE DATE

2022-05-04T09:21:22.956000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-21542date:2021-03-23T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-21542date:2021-04-19T00:00:00