First published: Tue Aug 06 2019(Updated: )
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can trigger read operations on an arbitrary file via Path Traversal in the TZ parameter, but cannot retrieve the data that is read. This causes a denial of service if the filename is, for example, /dev/random.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microdigital Mdc-n4090 Firmware | <=6400.0.8.5 | |
Microdigital Mdc-n4090 | ||
Microdigital Mdc-n4090w Firmware | <=6400.0.8.5 | |
Microdigital Mdc-n4090w | ||
Microdigital Mdc-n2190v Firmware | <=6400.0.8.5 | |
Microdigital Mdc-n2190v |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-14701 is a vulnerability found on MicroDigital N-series cameras with firmware through 6400.0.8.5.
An attacker can trigger read operations on an arbitrary file via Path Traversal in the TZ parameter.
The vulnerability can cause a denial of service if the filename is manipulated.
Yes, MicroDigital Mdc-n4090 cameras with firmware up to 6400.0.8.5 are vulnerable.
Install the latest firmware version for MicroDigital N-series cameras.