Lucene search
MitreCVE-2024-39091HistoryAug 12, 2024 - 4:15 p.m.
CVE-2024-39091
2024-08-1216:15:15
CWE-78
mitre
web.nvd.nist.gov
24
command injection
mipc camera
firmware
network
arbitrary code
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
High
EPSS
0.001
Percentile
21.7%
An OS command injection vulnerability in the ccm_debug component of MIPC Camera firmware prior to v5.4.1.240424171021 allows attackers within the same network to execute arbitrary code via a crafted HTML request.
Affected configurations
Node
annkecrater_2_firmwareMatch5.4.1.221222153318
annkecrater_2Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| annke | crater_2_firmware | 5.4.1.221222153318 | cpe:2.3:o:annke:crater_2_firmware:5.4.1.221222153318:*:*:*:*:*:*:* |
| annke | crater_2 | - | cpe:2.3:h:annke:crater_2:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2024-39091
2024-08-12 00:00:00
vulnrichment
vulnrichment
CVE-2024-39091
2024-08-12 00:00:00
nvd
nvd
CVE-2024-39091
2024-08-12 16:15:15
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
High
EPSS
0.001
Percentile
21.7%
Related for CVE-2024-39091