Skip to main content

Cc9381 Hv Firmware CVE-2020-11949

MEDIUM
2020-05-28 cve@mitre.org
Information Disclosure Cc9381 Hv Firmware Fd9360 H Firmware Fd9368 Htv Firmware Fd9380 H Firmware Fd9388 Htv Firmware Ib9360 H Firmware Ib9368 Ht Firmware Ib9380 H Firmware Ib9388 Ht Firmware It9360 H Firmware It9380 H Firmware It9388 Ht Firmware Md9560 Dh Firmware Md9560 H Firmware Fd9366 Hv Firmware Fd9166 Hn Firmware Fe9380 Hv Firmware Cc8160 Firmware Cc8160 Hs Firmware Cc8370 Hv Firmware Cc8371 Hv Firmware Cd8371 Hntv Firmware Cd8371 Hnvf2 Firmware Fd8166A Firmware Fd8166A N Firmware Fd8167A Firmware Fd8169A Firmware Fd8367A V Firmware Fd8369A V Firmware Fd816Ba Hf2 Firmware Fd836Ba Hvf2 Firmware Fd836Ba Htv Firmware Fd836Ba Ehvf2 Firmware Fd816Ba Ht Firmware Fd836Ba Ehtv Firmware Ib836Ba Ehf3 Firmware Ib836Ba Eht Firmware Ib836Ba Hf3 Firmware Ib836Ba Ht Firmware Fd816B Hf2 Firmware Fd816B Ht Firmware Fd836B Ehtv Firmware Fd836B Ehvf2 Firmware Fd836B Htv Firmware Fd836B Hvf2 Firmware Ib836B Ehf3 Firmware Ib836B Eht Firmware Ib836B Hf3 Firmware Ib836B Hrf3 Firmware Ib836B Ht Firmware Fd816Ca Hf2 Firmware Fd816C Hf2 Firmware Fd8182 F1 Firmware Fd8182 F2 Firmware Fd8182 T Firmware Fd8382 Etv Firmware Fd8382 Evf2 Firmware Fd8382 Tv Firmware Fd8382 Vf2 Firmware Ib8382 Ef3 Firmware Ib8382 Et Firmware Ib8382 F3 Firmware Ib8382 T Firmware Fd8366 V Firmware Ib8367A Firmware Ib8369A Firmware Ip8166 Firmware Md8563 Deh Firmware Md8563 Eh Firmware Md8564 Eh Firmware Md8565 N Firmware Vc8101 Firmware Vs8100 V2 Firmware Ip8160 Firmware Ip8160 W Firmware Ib8360 Firmware Ib8360 W Firmware Ip9171 Hp Firmware Ip9181 H Firmware Fd9371 Ehtv Firmware Fd9381 Ehtv Firmware Ib9371 Eht Firmware Ib9381 Eht Firmware Fd9171 Ht Firmware Fd9181 Ht Firmware Fe9181 H Firmware Fe9182 H Firmware Fe9381 Ehv Firmware Fe9382 Ehv Firmware Fe9180 H Firmware Fe9582 Ehnv Firmware Sd9161 H Firmware Sd9361 Ehl Firmware Sd9362 Ehl Firmware Sd9362 Eh Firmware Sd9363 Ehl Firmware Sd9364 Eh Firmware Sd9364 Ehl Firmware Sd9363 Ehl V2 Firmware Sd9364 Ehl V2 Firmware Sd9362 Eh V2 Firmware Sd9364 Eh V2 Firmware Sd9366 Eh V2 Firmware Sd9366 Ehl Firmware Sd9366 Eh Firmware Sd9365 Ehl Firmware Iz9361 Eh Firmware Fd9187 H Firmware Fd9187 Ht Firmware Fd9387 Ehtv Firmware Fd9387 Ehv Firmware Fd9387 Htv Firmware Fd9387 Hv Firmware Ib9387 Eh Firmware Ib9387 Eht Firmware Ib9387 H Firmware Ib9387 Ht Firmware Fd9189 H Firmware Fd9189 Hm Firmware Fd9189 Ht Firmware Fd9389 Hv Firmware Fd9389 Hmv Firmware Fd9389 Htv Firmware Fd9389 Ehmv Firmware Fd9389 Ehtv Firmware Fd9389 Ehv Firmware Ib9389 Eh Firmware Ib9389 Ehm Firmware Ib9389 Eht Firmware Ib9389 H Firmware Ib9389 Hm Firmware Ib9389 Ht Firmware Fd9165 Ht Firmware Fd9365 Ehtv Firmware Fd9365 Htv Firmware Fd9365 Htvl Firmware Ib9365 Ht Firmware Ib9365 Eht Firmware Ip9165 Hp Firmware Ip9165 Ht Firmware Ip9165 Lpc Firmware Fd9391 Ehtv Firmware Fe9191 Firmware Ip9191 Hp Firmware Ip9191 Ht Firmware Fe9391 Ev Firmware Ib9391 Eht Firmware Ip9172 Lpc Freeway Firmware It9389 H Firmware It9389 Ht Firmware Md9561 H Firmware Md9581 H Firmware Ms9390 Hv Firmware Tb9330 E Firmware Tb9331 E Firmware Sd9374 Ehl Firmware Fd9167 H Firmware Fd9167 Ht Firmware Fd9367 Ehtv Firmware Fd9367 Htv Firmware Fd9367 Hv Firmware Fd9367 Htv Epoc Firmware Ib9367 Eh Firmware Ib9367 Eht Firmware Ib9367 H Firmware Ib9367 Ht Firmware Ip9167 Hp Firmware Ip9167 Ht Firmware Ma9321 Ehtv Firmware Ms9321 Ehv Firmware Ma9322 Ehtv Firmware Fd8177 H Firmware Fd8377 Hv Firmware Fd8177 Ht Firmware Fd8377 Ehtv Firmware Fd8377 Htv Firmware Fd8179 H Firmware Fd8379 Hv Firmware Ib8377 H Firmware Ib8377 Ht Firmware Ib8377 Eht Firmware Fd9165 Ht A Firmware Fd9365 Htv A Firmware Fd9365 Ehtv A Firmware Fd9187 Ht A Firmware Fd9387 Htv A Firmware Fd9387 Ehtv A Firmware Ib9365 Eht A Firmware Ib9365 Ht A Firmware Ib9387 Eht A Firmware Ib9387 Ht A Firmware Ip9164 Ht Firmware Ip9164 Lpc Firmware Ip9165 Lpc I Cs Kit Firmware
6.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

1
CVE Published
May 28, 2020 - 13:15 nvd
MEDIUM 6.5

DescriptionNVD

testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's local filesystem. For example, this affects IT9388-HT devices.

AnalysisAI

testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's local filesystem. For example, this affects IT9388-HT devices. Affected products include: Vivotek Cc9381-Hv Firmware, Vivotek Fd9360-H Firmware, Vivotek Fd9368-Htv Firmware, Vivotek Fd9380-H Firmware, Vivotek Fd9388-Htv Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2020-11949 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy