CVE-2020-29001

Published Jan 26, 2021

Last updated 4 years ago

CVSS high 7.2

Overview

Description: An issue was discovered on Geeni GNC-CW028 Camera 2.7.2, Geeni GNC-CW025 Doorbell 2.9.5, Merkury MI-CW024 Doorbell 2.9.6, and Merkury MI-CW017 Camera 2.9.6 devices. A vulnerability exists in the RESTful Services API that allows a remote attacker to take full control of the camera with a high-privileged account. The vulnerability exists because a static username and password are compiled into the ppsapp RESTful application.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.2
Impact score: 5.9
Exploitability score: 1.2
Vector string: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-312

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:merkuryinnovations:geeni_gnc-cw028_firmware:2.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB35FD64-F869-48E4-8C6D-22259ABA0464"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:merkuryinnovations:geeni_gnc-cw028:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "96C4763A-8411-4C15-96E4-0595ECFC4660"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:merkuryinnovations:geeni_gnc-cw025_firmware:2.9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF9453C9-BE13-44F1-A4A9-EB620A0BCA47"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:merkuryinnovations:geeni_gnc-cw025:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FD78E397-9562-4C63-A631-071BF7973D38"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:merkuryinnovations:merkury_mi-cw024_firmware:2.9.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EDB1F0F-5D08-4F8C-BE21-1B3BAE04D05E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:merkuryinnovations:merkury_mi-cw024:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "03699D43-4FB6-4C2E-8A6D-DD8C9339E817"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:merkuryinnovations:merkury_mi-cw017_firmware:2.9.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7B98574-CB7B-4A4A-A401-135A954E3E27"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:merkuryinnovations:merkury_mi-cw017:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EA760040-B1B6-4264-B881-539EECCAF993"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References