Sign-up

ID

VAR-202502-3256


TITLE

Shenzhen Anjiaweishi Information Technology Co., Ltd. MC series cameras have arbitrary file download vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2025-04015

DESCRIPTION

Shenzhen Anjia Vision Information Technology Co., Ltd. MC-A37 300 is a 3-megapixel camera. MC-A37P 300 is a 3-megapixel camera. MC-A85 800 is an 8-megapixel camera. MC-A52 500 is a 5-megapixel camera. MC-J30 is a 4-megapixel camera. MC-J40 500 is a 5-megapixel full-color camera. MC-A42P 400 is a 4-megapixel camera. Shenzhen Anjia Vision Information Technology Co., Ltd. MC-A37 300, MC-A37P 300, MC-A85 800, MC-A52 500, MC-J30, MC-J40 500, MC-A42P 400 have arbitrary file download vulnerabilities, which can be exploited by attackers to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2025-04015

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2025-04015

AFFECTED PRODUCTS

vendor:anjia vision informationmodel:mc-a37 <=v3.4.0.6 202412031043scope:eqversion:300

Trust: 0.6

vendor:anjia vision informationmodel:mc-a37p <=v3.4.0.6 202412031043scope:eqversion:300

Trust: 0.6

vendor:anjia vision informationmodel:mc-a85 <=v3.3.0.5 202401240943scope:eqversion:800

Trust: 0.6

vendor:anjia vision informationmodel:mc-a52 <=v3.3.2.0 202407170928scope:eqversion:500

Trust: 0.6

vendor:anjia vision informationmodel:mc-j30 <=v3.3.2.5 202412121016scope: - version: -

Trust: 0.6

vendor:anjia vision informationmodel:mc-j40 <=v3.2.4.8 202309130905scope:eqversion:500

Trust: 0.6

vendor:anjia vision informationmodel:mc-a42p <=mca42p v0 v3.3.2.1 202408191409scope:eqversion:400

Trust: 0.6

sources: CNVD: CNVD-2025-04015

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2025-04015
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2025-04015
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2025-04015

EXTERNAL IDS

db:CNVDid:CNVD-2025-04015

Trust: 0.6

sources: CNVD: CNVD-2025-04015

SOURCES

db:CNVDid:CNVD-2025-04015

LAST UPDATE DATE

2025-03-02T23:31:06.525000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2025-04015date:2025-02-28T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2025-04015date:2025-02-23T00:00:00