exploitDog

CVE-2018-20955

Опубликовано: 08 авг. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Низкий

Описание

Swann SWWHD-INTCAM-HD devices have the twipc root password, leading to FTP access as root. NOTE: all affected customers were migrated by 2020-08-31.

Ссылки

https://www.pentestpartners.com/security-blog/hacking-swann-home-security-camera-video/
Exploit
Third Party Advisory
https://www.swann.com/au/safe-by-swann-upgrade
https://www.pentestpartners.com/security-blog/hacking-swann-home-security-camera-video/
Exploit
Third Party Advisory
https://www.swann.com/au/safe-by-swann-upgrade

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:swann:swwhd-intcam-hd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:swann:swwhd-intcam-hd:-:*:*:*:*:*:*:*

EPSS

Процентиль: 77%

0.01044

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-798

Связанные уязвимости

GHSA-258v-4jjf-2gpc

github

больше 3 лет назад

Swann SWWHD-INTCAM-HD devices have the twipc root password, leading to FTP access as root.

EPSS

Процентиль: 77%

0.01044

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-798