CVE-2023-30354

2023-05-1000:00:00

mitre

www.cve.org

ip camera

vulnerability

physical access

wi-fi password

hard-coded password

9.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.4%

JSON

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 does not defend against physical access to U-Boot via the UART: the Wi-Fi password is shown, and the hardcoded boot password can be inserted for console access.

References

github.com/SECloudUNIMORE/ACES/blob/master/Tenda/CP3/tmp_NCD.md

github.com/SECloudUNIMORE/ACES/blob/master/Tenda/CP3/tmp_PBA.md