CVE-2020-19642

EUVD-2020-11545
An issue was discovered in INSMA Wifi Mini Spy 1080P HD Security IP Camera 1.9.7 B. A local attacker can execute arbitrary code via editing the 'recdata.db' file to call a specially crafted GoAhead ASP-file on the SD card.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.2 MEDIUM
PHYSICAL
LOW
HIGH
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
Affected Products (NVD)
VendorProductVersion
insmawifi_mini_spy_1080p_hd_security_ip_camera_firmware
1.9.7b:b
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://xn--sb-lka.org/cve/INSMA.txt
https://xn--sb-lka.org/cve/INSMA.txt