CVE List


Critical 7.5

An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can trigger read operations on an arbitrary file via Path Traversal in the TZ parameter, but cannot retrieve the data that is read. This causes a denial of service if the filename is, for example, /dev/random.

Published August 7, 2019.

Affected software

Microdigital Mdc-n2190v Firmware

Microdigital Mdc-n4090 Firmware

Microdigital Mdc-n4090w Firmware

Reference links

Sign Up for Alerts