Mdc-n4090w Firmware Security Vulnerabilities and Issues — Mdc-n4090w Firmware CVE List

Lucene search

MicrodigitalMdc-n4090w Firmware

5 matches found

CVE•added 2019/08/06 11:15 p.m.•60 views

CVE-2019-14709

A cleartext password storage issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. The file in question is /usr/local/ipsca/mipsca.db. If a camera is compromised, the attacker can gain access to passwords and abuse them to compromise further systems.

9.8CVSS9.3AI score0.00407EPSS

CVE•added 2019/08/06 11:15 p.m.•59 views

CVE-2019-14708

An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. A buffer overflow in the action parameter leads to remote code execution in the context of the nobody account.

9.8CVSS9.9AI score0.06741EPSS

CVE•added 2019/08/06 11:15 p.m.•58 views

CVE-2019-14702

An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. SQL injection vulnerabilities exist in 13 forms that are reachable through HTTPD. An attacker can, for example, create an admin account.

9.8CVSS9.9AI score0.00528EPSS

CVE•added 2019/08/06 11:15 p.m.•50 views

CVE-2019-14698

An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. In a CGI program running under the HTTPD web server, a buffer overflow in the param parameter leads to remote code execution in the context of the nobody account.

9.8CVSS9.9AI score0.06248EPSS

CVE•added 2019/08/06 11:15 p.m.•47 views

CVE-2019-14704

An SSRF issue was discovered in HTTPD on MicroDigital N-series cameras with firmware through 6400.0.8.5 via FTP commands following a newline character in the uploadfile field.

9.8CVSS9.4AI score0.00588EPSS