First published: Tue Aug 06 2019(Updated: )
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. In a CGI program running under the HTTPD web server, a buffer overflow in the param parameter leads to remote code execution in the context of the nobody account.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microdigital Mdc-n4090 Firmware | <=6400.0.8.5 | |
Microdigital Mdc-n4090 | ||
Microdigital Mdc-n4090w Firmware | <=6400.0.8.5 | |
Microdigital Mdc-n4090w | ||
Microdigital Mdc-n2190v Firmware | <=6400.0.8.5 | |
Microdigital Mdc-n2190v |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-14698 is a vulnerability found in MicroDigital N-series cameras with firmware through 6400.0.8.5.
CVE-2019-14698 allows remote code execution in the context of the nobody account on the camera.
CVE-2019-14698 has a severity rating of 9.8 (Critical).
To fix CVE-2019-14698, you should upgrade the firmware of your MicroDigital N-series cameras to a version higher than 6400.0.8.5.
You can find more information about CVE-2019-14698 on the MicroDigital website and in the provided references.