What is CVE-2019-6973?

CVE-2019-6973 is a vulnerability that affects Sricam IP CCTV cameras, allowing attackers to perform a denial of service attack through multiple incomplete HTTP requests.

How does CVE-2019-6973 work?

CVE-2019-6973 exploits the configuration of the web server (based on gSOAP 2.8.x) used by Sricam IP CCTV cameras, which is configured for an iterative queueing approach with a timeout of several seconds. Attackers can send multiple incomplete HTTP requests to overwhelm the server and cause a denial of service.

What is the severity of CVE-2019-6973?

CVE-2019-6973 has a severity rating of 7.5 (High).

Which software is affected by CVE-2019-6973?

The vulnerability affects Sricam IP CCTV cameras with the following software: Genivia gSOAP 2.8.0.

How can I mitigate or fix CVE-2019-6973?

To mitigate CVE-2019-6973, it is recommended to update the firmware of the Sricam IP CCTV cameras with the latest patches provided by the manufacturer.

Vulnerability/
CVE-2019-6973

high

7.5

17/3/2019

4/8/2024

CVE-2019-6973

First published: Sun Mar 17 2019(Updated: )

Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server (based on gSOAP 2.8.x) is configured for an iterative queueing approach (aka non-threaded operation) with a timeout of several seconds.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Genivia gSOAP	=2.8.0
Sricam Nvs001
Sricam Sh016
Sricam Sh024
Sricam Sh026
Sricam Sh027
Sricam Sp007
Sricam Sp008
Sricam Sp009
Sricam Sp012
Sricam Sp015
Sricam Sp017
Sricam Sp018
Sricam Sp019
Sricam Sp020
Sricam Sp023

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2019-6973?
CVE-2019-6973 is a vulnerability that affects Sricam IP CCTV cameras, allowing attackers to perform a denial of service attack through multiple incomplete HTTP requests.
How does CVE-2019-6973 work?
CVE-2019-6973 exploits the configuration of the web server (based on gSOAP 2.8.x) used by Sricam IP CCTV cameras, which is configured for an iterative queueing approach with a timeout of several seconds. Attackers can send multiple incomplete HTTP requests to overwhelm the server and cause a denial of service.
What is the severity of CVE-2019-6973?
CVE-2019-6973 has a severity rating of 7.5 (High).
Which software is affected by CVE-2019-6973?
The vulnerability affects Sricam IP CCTV cameras with the following software: Genivia gSOAP 2.8.0.
How can I mitigate or fix CVE-2019-6973?
To mitigate CVE-2019-6973, it is recommended to update the firmware of the Sricam IP CCTV cameras with the latest patches provided by the manufacturer.

collector/nvd-index
agent/severity
agent/references
agent/author
agent/event
agent/type
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/genivia
canonical/genivia gsoap
version/genivia gsoap/2.8.0
vendor/sricam
canonical/sricam nvs001
canonical/sricam sh016
canonical/sricam sh024
canonical/sricam sh026
canonical/sricam sh027
canonical/sricam sp007
canonical/sricam sp008
canonical/sricam sp009
canonical/sricam sp012
canonical/sricam sp015
canonical/sricam sp017
canonical/sricam sp018
canonical/sricam sp019
canonical/sricam sp020
canonical/sricam sp023

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.