CVE-2020-27539

2021-01-2520:26:41

mitre

www.cve.org

heap overflow

http response

rostelecom cs-c2shw

AI Score

9.8

Confidence

High

EPSS

0.004

Percentile

72.6%

JSON

Heap overflow with full parsing of HTTP respose in Rostelecom CS-C2SHW 5.0.082.1. AgentUpdater service has a self-written HTTP parser and builder. HTTP parser has a heap buffer overflow (OOB write). In default configuration camera parses responses only from HTTPS URLs from config file, so vulnerable code is unreachable and one more bug required to reach it.

References

dil4rd.medium.com/groundhog-day-in-iot-valley-or-5-cves-in-1-camera-7dc1d2864707