cbcvebase.

Meritlilin P2G1022 Firmware vulnerabilities

4 known vulnerabilities affecting meritlilin/p2g1022_firmware.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH2

Vulnerabilities

Page 1 of 1
CVE-2021-30168P2CRITICALCVSS 9.8Exploitedfixed in 7.1.94.89082021-04-28
CVE-2021-30168 [CRITICAL] CWE-200 CVE-2021-30168: The sensitive information of webcam device is not properly protected. Remote attackers can unauthent The sensitive information of webcam device is not properly protected. Remote attackers can unauthentically grant administrator’s credential and further control the devices.
nvd
CVE-2021-30167P2CRITICALCVSS 9.8fixed in 7.1.94.89082021-04-28
CVE-2021-30167 [CRITICAL] CWE-522 CVE-2021-30167: The manage users profile services of the network camera device allows an authenticated. Remote attac The manage users profile services of the network camera device allows an authenticated. Remote attackers can modify URL parameters and further amend user’s information and escalate privileges to control the devices.
nvd
CVE-2021-30166P3HIGHCVSS 7.2fixed in 7.1.94.89082021-04-28
CVE-2021-30166 [HIGH] CWE-78 CVE-2021-30166: The NTP Server configuration function of the IP camera device is not verified with special parameter The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission.
nvd
CVE-2021-30169P3HIGHCVSS 7.5fixed in 7.1.94.89082021-04-28
CVE-2021-30169 [HIGH] CWE-200 CVE-2021-30169: The sensitive information of webcam device is not properly protected. Remote attackers can unauthent The sensitive information of webcam device is not properly protected. Remote attackers can unauthentically grant user’s credential.
nvd
Meritlilin P2G1022 Firmware vulnerabilities | cvebase