CVE-2021-30168 | Severity.io

Description

The sensitive information of webcam device is not properly protected. Remote attackers can unauthentically grant administrator’s credential and further control the devices.

Related CPE's

p2r8852e2_firmware

Vulnerable

p2r8852e4_firmware

Vulnerable

p2r6852e2_firmware

Vulnerable

p2r6852e4_firmware

Vulnerable

p2r6552e2_firmware

Vulnerable

p2r6552e4_firmware

Vulnerable

p2r6352ae2_firmware

Vulnerable

p2r6352ae4_firmware

Vulnerable

p2r3052ae2_firmware

Vulnerable

p2g1052_firmware

Vulnerable

p2r8822e2_firmware

Vulnerable

p2r8822e4_firmware

Vulnerable

p2r6822e2_firmware

Vulnerable

p2r6822e4_firmware

Vulnerable

p2r6522e2_firmware

Vulnerable

p2r6522e4_firmware

Vulnerable

p2r6322ae2_firmware

Vulnerable

p2r6322ae4_firmware

Vulnerable

p2r3022ae2_firmware

Vulnerable

p2g1022_firmware

Vulnerable

p2g1022x_firmware

Vulnerable

z2r8852ax_firmware

Vulnerable

z2r8152x-p_firmware

Vulnerable

z2r8152x2-p_firmware

Vulnerable

z2r8052ex25_firmware

Vulnerable

z2r6552x_firmware

Vulnerable

z2r6452ax_firmware

Vulnerable

z2r6452ax-p_firmware

Vulnerable

z2r8822ax_firmware

Vulnerable

z2r8122x-p_firmware

Vulnerable

z2r8122x2-p_firmware

Vulnerable

z2r8022ex25_firmware

Vulnerable

z2r6522x_firmware

Vulnerable

z2r6422ax_firmware

Vulnerable

z2r6422ax-p_firmware

Vulnerable

p3r6322e2_firmware

Vulnerable

p3r6522e2_firmware

Vulnerable

p3r8822e2_firmware

Vulnerable

z3r6422x3_firmware

Vulnerable

z3r6522x_firmware

Vulnerable

z3r8922x3_firmware

Vulnerable

References

https://gist.github.com/keniver/86ebef688fb274b534da51ef1a84dd3e

Third Party Advisory

https://www.chtsecurity.com/news/0b733a38-e616-4ff3-86a6-13e710643388

Third Party Advisory

https://www.meritlilin.com/assets/uploads/support/file/M00166-TW.pdf

Vendor Advisory

https://www.twcert.org.tw/tw/cp-132-4678-aad70-1.html

Third Party Advisory

Weaknesses

[email protected]

Primary

CWE-522

[email protected]

Secondary

CWE-200

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-04-28T10:15:08.740

4 years ago

Last modified

2022-10-25T18:52:53.297

2 years ago