CVE-2021-33543

Summary

Multiple camera devices by UDP Technology, Geutebrück and other vendors allow unauthenticated remote access to sensitive files due to default user authentication settings. This can lead to manipulation of the device and denial of service.

Affected Software

VendorProductVersion RangeStatus
GeutebrückE2 SeriesEBC-21xx 1.12.13.2affected
GeutebrückE2 SeriesEBC-21xx 1.12.14.5affected
GeutebrückE2 SeriesEFD-22xx 1.12.13.2affected
GeutebrückE2 SeriesEFD-22xx 1.12.14.5affected
GeutebrückE2 SeriesETHC-22xx 1.12.13.2affected
GeutebrückE2 SeriesETHC-22xx 1.12.14.5affected
GeutebrückE2 SeriesEWPC-22xx 1.12.13.2affected
GeutebrückE2 SeriesEWPC-22xx 1.12.14.5affected
GeutebrückE2 SeriesEBC-21xx <= 1.12.0.27affected
GeutebrückE2 SeriesEFD-22xx <= 1.12.0.27affected
GeutebrückE2 SeriesETHC-22xx <= 1.12.0.27affected
GeutebrückE2 SeriesEWPC-22xx <= 1.12.0.27affected
GeutebrückEncoder G-CodeEEC-2xx 1.12.13.2affected
GeutebrückEncoder G-CodeEEC-2xx 1.12.14.5affected
GeutebrückEncoder G-CodeEEN-20xx 1.12.13.2affected
GeutebrückEncoder G-CodeEEN-20xx 1.12.14.5affected
GeutebrückEncoder G-CodeEEC-2xx <= 1.12.0.27affected
GeutebrückEncoder G-CodeEEN-20xx <= 1.12.0.27affected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

ADP Enrichment

CVE Program Container

Additional References

References