CVE-2020-29000
N/A
N/A
Summary
An issue was discovered on Geeni GNC-CW013 doorbell 1.8.1 devices. A vulnerability exists in the RTSP service that allows a remote attacker to take full control of the device with a high-privileged account. By sending a crafted message, an attacker is able to remotely deliver a telnet session. Any attacker that has the ability to control DNS can exploit this vulnerability to remotely login to the device and gain access to the camera system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://support.mygeeni.com/hc/en-us
- https://gist.github.com/tj-oconnor/d081f5f116a4865f888be81e2466d831
References
- https://support.mygeeni.com/hc/en-us
- https://gist.github.com/tj-oconnor/d081f5f116a4865f888be81e2466d831
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.