CVE-2019-3424

authentication issues vulnerability, which exists in V2.1.14 and below versions of C520V21 smart camera devices. An attacker can automatically obtain access to web services from the authorized browser of the same computer and perform operations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.2 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
ztehomec520v21_firmware
𝑥
≤ 2.1.14
𝑥
= Vulnerable software versions
References
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1011842
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1011842