CVE-2020-10231

TP-Link NC200 through 2.1.8_Build_171109, NC210 through 1.0.9_Build_171214, NC220 through 1.3.0_Build_180105, NC230 through 1.3.0_Build_171205, NC250 through 1.3.0_Build_171205, NC260 through 1.5.1_Build_190805, and NC450 through 1.5.0_Build_181022 devices allow a remote NULL Pointer Dereference.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
tp-linknc450_firmware
1.1.1:160928
tp-linknc450_firmware
1.1.2:161013
tp-linknc450_firmware
1.1.6:161124
tp-linknc450_firmware
1.5.0:181022
tp-linknc260_firmware
1.0.5:160804
tp-linknc260_firmware
1.0.6:161114
tp-linknc260_firmware
1.5.1:190805
tp-linknc250_firmware
1.3.0:171205
tp-linknc230_firmware
1.3.0:171205
tp-linknc220_firmware
1.1.12:160321_a
tp-linknc220_firmware
1.1.12:160321_b
tp-linknc220_firmware
1.1.14:161219
tp-linknc220_firmware
1.2.0:170516
tp-linknc220_firmware
1.3.0:180105
tp-linknc210_firmware
1.0.9:171214
tp-linknc200_firmware
2.1.6:160108_a
tp-linknc200_firmware
2.1.6:160108_b
tp-linknc200_firmware
2.1.7:160315_a
tp-linknc200_firmware
2.1.7:160315_b
tp-linknc200_firmware
2.1.8:171109
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/157048/TP-LINK-Cloud-Cameras-NCXXX-Remote-NULL-Pointer-Dereference.html
http://seclists.org/fulldisclosure/2020/Apr/5
http://seclists.org/fulldisclosure/2020/Mar/54
http://packetstormsecurity.com/files/157048/TP-LINK-Cloud-Cameras-NCXXX-Remote-NULL-Pointer-Dereference.html
http://seclists.org/fulldisclosure/2020/Apr/5
http://seclists.org/fulldisclosure/2020/Mar/54