The Motorola MBP853 firmware does not correctly validate server certificates. This allows for a Man in The Middle (MiTM) attack to take place between a Motorola MBP853 camera and the servers it communicates with. In one such instance, it was identified that the device was downloading what appeared to be a client certificate.
References
Link | Resource |
---|---|
https://blog.sean-wright.com/cve-2018-12499/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2018-07-02 16:29
Updated : 2024-02-28 16:25
NVD link : CVE-2018-12499
Mitre link : CVE-2018-12499
CVE.ORG link : CVE-2018-12499
JSON object : View
Products Affected
motorola
- mbp853_firmware
- mbp853
CWE
CWE-295
Improper Certificate Validation