SB2018101105 - Multiple vulnerabilities in Hangzhou Xiongmai Technology XMeye P2P Cloud Server

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018101105

SB2018101105 - Multiple vulnerabilities in Hangzhou Xiongmai Technology XMeye P2P Cloud Server

Published: October 11, 2018

Security Bulletin ID SB2018101105
Severity
Low
Patch available
YES
Number of vulnerabilities 3
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.


1) Information disclosure (CVE-ID: CVE-2018-17917)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists due to unspecified flaw. A remote attacker can use MAC addresses, enumerate potential Cloud IDs and use it to discover and connect to valid devices using one of the supported apps.


2) Security restrictions bypass (CVE-ID: CVE-2018-17919)

The vulnerability allows a remote attacker to bypass security restrictions.

The vulnerability exists due to unspecified flaw. A remote attacker can use an undocumented user account “default” with its default password to login to XMeye and access/view video streams.


3) Privilege escalation (CVE-ID: CVE-2018-17915)

The vulnerability allows a remote attacker to gain elevated privileges.

The vulnerability exists due to missing encryption of sensitive data. A remote attacker can eavesdrop on video feeds, steal XMeye login credentials, or impersonate the update server with malicious update code.


Remediation

Install update from vendor's website.

References