CVE-2020-27557

2020-11-1714:18:54

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Unprotected Storage of Credentials vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows local users to gain access to the video streaming username and password via SQLite files containing plain text credentials.

References

infosec.rm-it.de/2020/11/04/basetech-ip-camera-analysis/#vulns