6.9
CVE-2024-7339
- EPSS 88.92%
- Veröffentlicht 01.08.2024 04:15:05
- Zuletzt bearbeitet 20.12.2024 17:37:05
- Quelle cna@vuldb.com
- CVE-Watchlists
- Unerledigt
LoginA vulnerability has been found in TVT DVR TD-2104TS-CL, DVR TD-2108TS-HP, Provision-ISR DVR SH-4050A5-5L(MM) and AVISION DVR AV108T and classified as problematic. This vulnerability affects unknown code of the file /queryDevInfo. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-273262 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Provision-isr ≫ Sh-4050a5-5l(mm) Firmware Version-
Provision-isr ≫ Sh-4050a5-5l(mm) Firmware Version1.3.3.20657b180918.d06.u2(4a41t)
Provision-isr ≫ Sh-4050a5-5l(mm) Firmware Version1.3.4.22966b181219.d00.u1(4a21s)
Provision-isr ≫ Sh-4050a5-5l(mm) Firmware Version1.3.4.22966b181219.d14.u1(8a41t)
Provision-isr ≫ Sh-4050a5-5l(mm) Firmware Version1.3.4.22966b181219.d44.u1(16a82t)
Provision-isr ≫ Sh-4050a5-5l(mm) Firmware Version1.3.4.24513b190218.d00.u1(8a21s)
Provision-isr ≫ Sh-4050a5-5l(mm) Firmware Version1.3.4.24879b190222.d00.u2(8a21s)
Tvt ≫ Avision Av108t Firmware Version-
Tvt ≫ Avision Av108t Firmware Version1.3.3.20657b180918.d06.u2(4a41t)
Tvt ≫ Avision Av108t Firmware Version1.3.4.22966b181219.d00.u1(4a21s)
Tvt ≫ Avision Av108t Firmware Version1.3.4.22966b181219.d14.u1(8a41t)
Tvt ≫ Avision Av108t Firmware Version1.3.4.22966b181219.d44.u1(16a82t)
Tvt ≫ Avision Av108t Firmware Version1.3.4.24513b190218.d00.u1(8a21s)
Tvt ≫ Avision Av108t Firmware Version1.3.4.24879b190222.d00.u2(8a21s)
Tvt ≫ Td-2104ts-cl Firmware Version-
Tvt ≫ Td-2104ts-cl Firmware Version1.3.3.20657b180918.d06.u2(4a41t)
Tvt ≫ Td-2104ts-cl Firmware Version1.3.4.22966b181219.d00.u1(4a21s)
Tvt ≫ Td-2104ts-cl Firmware Version1.3.4.22966b181219.d14.u1(8a41t)
Tvt ≫ Td-2104ts-cl Firmware Version1.3.4.22966b181219.d44.u1(16a82t)
Tvt ≫ Td-2104ts-cl Firmware Version1.3.4.24513b190218.d00.u1(8a21s)
Tvt ≫ Td-2104ts-cl Firmware Version1.3.4.24879b190222.d00.u2(8a21s)
Tvt ≫ Td-2108ts-hp Firmware Version-
Tvt ≫ Td-2108ts-hp Firmware Version1.3.3.20657b180918.d06.u2(4a41t)
Tvt ≫ Td-2108ts-hp Firmware Version1.3.4.22966b181219.d00.u1(4a21s)
Tvt ≫ Td-2108ts-hp Firmware Version1.3.4.22966b181219.d14.u1(8a41t)
Tvt ≫ Td-2108ts-hp Firmware Version1.3.4.22966b181219.d44.u1(16a82t)
Tvt ≫ Td-2108ts-hp Firmware Version1.3.4.24513b190218.d00.u1(8a21s)
Tvt ≫ Td-2108ts-hp Firmware Version1.3.4.24879b190222.d00.u2(8a21s)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 88.92% | 0.995 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
| cna@vuldb.com | 6.9 | 0 | 0 |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
| cna@vuldb.com | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
| cna@vuldb.com | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.