Lucene search

MitreCVE-2024-31799

HistoryAug 15, 2024 - 5:15 p.m.

CVE-2024-31799

2024-08-1517:15:17

CWE-200

CWE-319

mitre

web.nvd.nist.gov

gncc

gc2 indoor security camera

information disclosure

wifi passphrase

attack

physical access

uart debugging port

cve-2024-31799

CVSS3

4.6

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

21.4%

JSON

Information Disclosure in GNCC’s GC2 Indoor Security Camera 1080P allows an attacker with physical access to read the WiFi passphrase via the UART Debugging Port.

Affected configurations

Nvd

Node

gncchomegncc_c2_firmwareMatch-

AND

gncchome_gncc_c2Match-

VendorProductVersionCPE
gncchomegncc_c2_firmware-cpe:2.3:o:gncchome:gncc_c2_firmware:-:*:*:*:*:*:*:*
gncchome_gncc_c2-cpe:2.3:h:gncchome:_gncc_c2:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gncchome	gncc_c2_firmware	-	cpe:2.3:o:gncchome:gncc_c2_firmware:-:::::::*
gncchome	_gncc_c2	-	cpe:2.3:h:gncchome:_gncc_c2:-:::::::*

References

gncchome.com/collections/indoor-camera/products/c2-indoor-security-camera-1080p

www.nsideattacklogic.de/advisories/NSIDE-SA-2024-001

CVSS3

4.6

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

21.4%

JSON

Related for CVE-2024-31799