An issue in Plug n Play Camera com.wisdomcity.zwave 1.1.0 allows a remote attacker to obtain sensitive information via the firmware update process.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 15 Oct 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Starvedia
Starvedia com.wisdomcity.zwave
Weaknesses CWE-922
CPEs cpe:2.3:o:starvedia:com.wisdomcity.zwave:1.1.0:*:*:*:*:*:*:*
Vendors & Products Starvedia
Starvedia com.wisdomcity.zwave
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 11 Oct 2024 20:15:00 +0000

Type Values Removed Values Added
Description An issue in Plug n Play Camera com.wisdomcity.zwave 1.1.0 allows a remote attacker to obtain sensitive information via the firmware update process.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-10-15T16:26:48.016Z

Reserved: 2024-10-08T00:00:00

Link: CVE-2024-48770

cve-icon Vulnrichment

Updated: 2024-10-15T16:17:41.312Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-10-11T20:15:05.450

Modified: 2024-10-15T17:35:07.440

Link: CVE-2024-48770

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.