CVE-2019-18382

An issue was discovered on AVStar PE204 3.10.70 IP camera devices. A denial of service can occur on open TCP port 23456. After a TELNET connection, no TCP ports are open.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://github.com/gusrmsdlrh/CVE-PE204	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:avstar:pe204_firmware:3.10.70:*:*:*:*:*:*:*

cpe:2.3:h:avstar:pe204:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-10-23 21:15

Updated : 2024-02-28 17:28

NVD link : CVE-2019-18382

Mitre link : CVE-2019-18382

CVE.ORG link : CVE-2019-18382

JSON object : View

Products Affected

avstar

pe204
pe204_firmware

CWE

NVD-CWE-noinfo

{"id": "CVE-2019-18382", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2019-10-23T21:15:10.887", "references": [{"url": "https://github.com/gusrmsdlrh/CVE-PE204", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered on AVStar PE204 3.10.70 IP camera devices. A denial of service can occur on open TCP port 23456. After a TELNET connection, no TCP ports are open."}, {"lang": "es", "value": "Se detect\u00f3 un problema en los dispositivos de c\u00e1mara IP AVStar PE204 versi\u00f3n 3.10.70. Puede presentarse una denegaci\u00f3n de servicio en el puerto TCP abierto 23456. Despu\u00e9s de una conexi\u00f3n TELNET, no existe puertos TCP abiertos."}], "lastModified": "2021-07-21T11:39:23.747", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:avstar:pe204_firmware:3.10.70:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4041E118-F3E2-43BC-BE95-6A31B649293E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:avstar:pe204:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "884D0208-20D8-4767-88BE-7755E8A00267"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}