CVE-2019-14700
Summary
| CVE | CVE-2019-14700 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-08-06 23:15:00 UTC |
| Updated | 2019-08-13 18:43:00 UTC |
| Description | An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. There is disclosure of the existence of arbitrary files via Path Traversal in HTTPD. This occurs because the filename specified in the TZ parameter is accessed with a substantial delay if that file exists. |
Risk And Classification
Problem Types: CWE-22
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Microdigital | Mdc-n2190v | - | All | All | All |
| Hardware | Microdigital | Mdc-n2190v | - | All | All | All |
| Operating System | Microdigital | Mdc-n2190v Firmware | All | All | All | All |
| Hardware | Microdigital | Mdc-n4090 | - | All | All | All |
| Hardware | Microdigital | Mdc-n4090 | - | All | All | All |
| Hardware | Microdigital | Mdc-n4090w | - | All | All | All |
| Hardware | Microdigital | Mdc-n4090w | - | All | All | All |
| Operating System | Microdigital | Mdc-n4090w Firmware | All | All | All | All |
| Operating System | Microdigital | Mdc-n4090 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| > [Suggested description]> An issue was discovered on MicroDigital N-series ca - Pastebin.com | MISC | pastebin.com | Third Party Advisory |
| www.microdigital.co.kr | MISC | www.microdigital.co.kr | Vendor Advisory |
| www.microdigital.ru | MISC | www.microdigital.ru | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.