Details of VAR-202108-2341

ID

VAR-202108-2341

TITLE

Unauthorized access vulnerability exists in D430 of Xindu Co., Ltd.

Trust: 0.6

sources: CNVD: CNVD-2021-50589

DESCRIPTION

Xindu Co., Ltd. is not satisfied with Korea's earliest history of producing copiers and fax machines, and strives to become the world's best solution partner. Xindu Co., Ltd. D430 has an unauthorized access vulnerability. Attackers can use this vulnerability to gain unauthorized access to obtain sensitive information and perform unauthorized operations.

Trust: 0.6

sources: CNVD: CNVD-2021-50589

IOT TAXONOMY

category:

['IoT']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-50589

AFFECTED PRODUCTS

vendor:

shinto

model:

d430web image monito

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2021-50589

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-50589
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-50589
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-50589

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-50589

Trust: 0.6

sources: CNVD: CNVD-2021-50589

SOURCES

db:

CNVD

id:

CNVD-2021-50589

LAST UPDATE DATE

2022-05-04T10:03:06.450000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-50589

date:

2021-07-14T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-50589

date:

2021-08-12T00:00:00