Details of VAR-202212-2681

ID

VAR-202212-2681

TITLE

Weak password vulnerability exists in Infinova HD Network Mini Dome

Trust: 0.6

sources: CNVD: CNVD-2021-80694

DESCRIPTION

Infinova, founded in 1993, takes smart security as its core. It is a smart city, smart home solution provider and operation service provider, providing smart security, smart city, smart home, big data and Internet operation services for the world. Infinova HD Network Mini Dome has a weak password vulnerability. Attackers can log in to the system background through the default password to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-80694

IOT TAXONOMY

category:

['IoT']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-80694

AFFECTED PRODUCTS

vendor:

infinova

model:

hd network mini dome

scope:

version:

v2.8.0.201608241155

Trust: 0.6

sources: CNVD: CNVD-2021-80694

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2021-80694
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2021-80694
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2021-80694

PATCH

title:

Patch for Weak password vulnerability exists in Infinova HD Network Mini Dome

url:

https://www.cnvd.org.cn/patchinfo/show/363786

Trust: 0.6

sources: CNVD: CNVD-2021-80694

EXTERNAL IDS

db:

CNVD

id:

CNVD-2021-80694

Trust: 0.6

sources: CNVD: CNVD-2021-80694

SOURCES

db:

CNVD

id:

CNVD-2021-80694

LAST UPDATE DATE

2023-09-28T23:07:02+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2021-80694

date:

2022-12-05T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2021-80694

date:

2022-12-05T00:00:00