Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2019-11878
Analyzed
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-10 May, 2019 | 15:29
Updated At-13 May, 2019 | 14:06

An issue was discovered on XiongMai Besder IP20H1 V4.02.R12.00035520.12012.047500.00200 cameras. An attacker on the same local network as the camera can craft a message with a size field larger than 0x80000000 and send it to the camera, related to an integer overflow or use of a negative number. This then crashes the camera for about 120 seconds.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.06.5MEDIUM
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary2.03.3LOW
AV:A/AC:L/Au:N/C:N/I:N/A:P
CPE Matches
xiongmaitech
xiongmaitech
>>besder_ip20h1_firmware>>4.02.r12.00035520.12012.047500.00200
cpe:2.3:o:xiongmaitech:besder_ip20h1_firmware:4.02.r12.00035520.12012.047500.00200:*:*:*:*:*:*:*
xiongmaitech
xiongmaitech
>>besder_ip20h1>>-
cpe:2.3:h:xiongmaitech:besder_ip20h1:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-190Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://blog.0x42424242.in/2019/04/besder-investigative-journey-part-1_24.htmlcve@mitre.org
Exploit
Third Party Advisory
https://www.youtube.com/watch?v=SnyPJtDDMFQcve@mitre.org
Exploit
Third Party Advisory
Change History
0Changes found
Details not found