CVE-2023-30356

EUVD-2023-34777
Missing Support for an Integrity Check in Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows attackers to update the device with crafted firmware
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CISA-ADPADP
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
Affected Products (NVD)
VendorProductVersion
tendacp3_firmware
11.10.00.2211041355
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/SECloudUNIMORE/ACES/blob/master/Tenda/CP3/tmp_MU.md
https://github.com/SECloudUNIMORE/ACES/blob/master/Tenda/CP3/tmp_MU.md