Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2020-3507
HistoryAug 26, 2020 - 5:15 p.m.

CVE-2020-3507

2020-08-2617:15:14
CWE-20
[email protected]
web.nvd.nist.gov
8

CVSS2

8.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

36.3%

JSON

Multiple vulnerabilities in the Cisco Discovery Protocol implementation for Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP camera. These vulnerabilities are due to missing checks when the IP cameras process a Cisco Discovery Protocol packet. An attacker could exploit these vulnerabilities by sending a malicious Cisco Discovery Protocol packet to the targeted IP camera. A successful exploit could allow the attacker to execute code on the affected IP camera or cause it to reload unexpectedly, resulting in a denial of service (DoS) condition. Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Affected configurations

Nvd
Node
cisco8000p_ip_camera_firmwareMatch1.0.9-1
AND
cisco8000p_ip_cameraMatch-
Node
cisco8020_ip_camera_firmwareMatch1.0.9-1
AND
cisco8020_ip_cameraMatch-
Node
cisco8030_ip_camera_firmwareMatch1.0.9-1
AND
cisco8030_ip_cameraMatch-
Node
cisco8070_ip_camera_firmwareMatch1.0.9-1
AND
cisco8070_ip_cameraMatch-
Node
cisco8400_ip_camera_firmwareMatch1.0.9-1
AND
cisco8400_ip_cameraMatch-
Node
cisco8620_ip_camera_firmwareMatch1.0.9-1
AND
cisco8620_ip_cameraMatch-
Node
cisco8630_ip_camera_firmwareMatch1.0.9-1
AND
cisco8630_ip_cameraMatch-
Node
cisco8930_speed_dome_ip_camera_firmwareMatch1.0.9-1
AND
cisco8930_speed_dome_ip_cameraMatch-
VendorProductVersionCPE
cisco8000p_ip_camera_firmware1.0.9-1cpe:2.3:o:cisco:8000p_ip_camera_firmware:1.0.9-1:*:*:*:*:*:*:*
cisco8000p_ip_camera-cpe:2.3:h:cisco:8000p_ip_camera:-:*:*:*:*:*:*:*
cisco8020_ip_camera_firmware1.0.9-1cpe:2.3:o:cisco:8020_ip_camera_firmware:1.0.9-1:*:*:*:*:*:*:*
cisco8020_ip_camera-cpe:2.3:h:cisco:8020_ip_camera:-:*:*:*:*:*:*:*
cisco8030_ip_camera_firmware1.0.9-1cpe:2.3:o:cisco:8030_ip_camera_firmware:1.0.9-1:*:*:*:*:*:*:*
cisco8030_ip_camera-cpe:2.3:h:cisco:8030_ip_camera:-:*:*:*:*:*:*:*
cisco8070_ip_camera_firmware1.0.9-1cpe:2.3:o:cisco:8070_ip_camera_firmware:1.0.9-1:*:*:*:*:*:*:*
cisco8070_ip_camera-cpe:2.3:h:cisco:8070_ip_camera:-:*:*:*:*:*:*:*
cisco8400_ip_camera_firmware1.0.9-1cpe:2.3:o:cisco:8400_ip_camera_firmware:1.0.9-1:*:*:*:*:*:*:*
cisco8400_ip_camera-cpe:2.3:h:cisco:8400_ip_camera:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 161

Related

cve 1
cvelist 1
prion 1
cisco 1
threatpost 1
cve
cve
CVE-2020-3507
2020-08-26 17:15:14
cvelist
cvelist
CVE-2020-3507 Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerabilities
2020-08-26 16:15:42
prion
prion
Design/Logic Flaw
2020-08-26 17:15:00
cisco
cisco
Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerabilities
2020-08-19 16:00:00
threatpost
threatpost
Cisco Critical Flaw Patched in WAN Software Solution
2020-08-20 12:43:13

CVSS2

8.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

36.3%

JSON
Related for NVD:CVE-2020-3507
cve1cvelist1prion1cisco1threatpost1