CVE-2019-20463 Information

Description

An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A crash and reboot can be triggered by crafted IP traffic as demonstrated by the Nikto vulnerability scanner. For example sending the 111111 string to UDP port 20188 causes a reboot. To deny service for a long time period the crafted IP traffic may be sent periodically.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Reference

https://www.eurofins-cybersecurity.com/news/connected-devices-baby-monitors-part-2/

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

7.5