CVE-2020-12111 - OpenCVE

Certain TP-Link devices allow Command Injection. This affects NC260 1.5.2 build 200304 and NC450 1.5.3 build 200304.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:S/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Tp-link	Nc260 Nc260 Firmware Nc450 Nc450 Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:tp-link:nc260_firmware:1.0.5:160804::::::
	cpe:2.3:o:tp-link:nc260_firmware:1.0.6:161114::::::
	cpe:2.3:o:tp-link:nc260_firmware:1.4.1:180720::::::
	cpe:2.3:o:tp-link:nc260_firmware:1.5.0:181123::::::
	cpe:2.3:o:tp-link:nc260_firmware:1.5.2:200304::::::

cpe:2.3:h:tp-link:nc260:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:tp-link:nc450_firmware:1.0.15:160920::::::
	cpe:2.3:o:tp-link:nc450_firmware:1.1.2:161013::::::
	cpe:2.3:o:tp-link:nc450_firmware:1.3.4:171130::::::
	cpe:2.3:o:tp-link:nc450_firmware:1.5.3:200304::::::

cpe:2.3:h:tp-link:nc450:-:*:*:*:*:*:*:*

References

Link	Resource
http://packetstormsecurity.com/files/157533/TP-LINK-Cloud-Cameras-NCXXX-SetEncryptKey-Command-Injection.html	Exploit Third Party Advisory VDB Entry
https://seclists.org/fulldisclosure/2020/May/4	Exploit Mailing List Third Party Advisory
https://www.tp-link.com/us/security	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2020-05-04T14:05:46

Updated: 2020-05-04T18:06:14

Reserved: 2020-04-23T00:00:00

Link: CVE-2020-12111

JSON object: View

NVD Information

Status : Analyzed

Published: 2020-05-04T15:15:14.307

Modified: 2020-05-12T14:45:07.257

Link: CVE-2020-12111

JSON object: View

Redhat Information

No data.

CWE

CWE-78

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Certain TP-Link devices allow Command Injection. This affects NC260 1.5.2 build 200304 and NC450 1.5.3 build 200304."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-05-04T18:06:14", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.tp-link.com/us/security"}, {"tags": ["x_refsource_MISC"], "url": "https://seclists.org/fulldisclosure/2020/May/4"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/157533/TP-LINK-Cloud-Cameras-NCXXX-SetEncryptKey-Command-Injection.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2020-12111", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Certain TP-Link devices allow Command Injection. This affects NC260 1.5.2 build 200304 and NC450 1.5.3 build 200304."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.tp-link.com/us/security", "refsource": "MISC", "url": "https://www.tp-link.com/us/security"}, {"name": "https://seclists.org/fulldisclosure/2020/May/4", "refsource": "MISC", "url": "https://seclists.org/fulldisclosure/2020/May/4"}, {"name": "http://packetstormsecurity.com/files/157533/TP-LINK-Cloud-Cameras-NCXXX-SetEncryptKey-Command-Injection.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/157533/TP-LINK-Cloud-Cameras-NCXXX-SetEncryptKey-Command-Injection.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2020-12111", "datePublished": "2020-05-04T14:05:46", "dateReserved": "2020-04-23T00:00:00", "dateUpdated": "2020-05-04T18:06:14", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:nc260_firmware:1.0.5:160804:*:*:*:*:*:*", "matchCriteriaId": "B4227D23-DF7F-484C-8508-341ED2744B52", "vulnerable": true}, {"criteria": "cpe:2.3:o:tp-link:nc260_firmware:1.0.6:161114:*:*:*:*:*:*", "matchCriteriaId": "2E7D5E76-892D-46B1-BD46-BD34E0CDFC22", "vulnerable": true}, {"criteria": "cpe:2.3:o:tp-link:nc260_firmware:1.4.1:180720:*:*:*:*:*:*", "matchCriteriaId": "C23AB02F-00DA-4844-96EE-6E3976BB5065", "vulnerable": true}, {"criteria": "cpe:2.3:o:tp-link:nc260_firmware:1.5.0:181123:*:*:*:*:*:*", "matchCriteriaId": "3F23255A-C021-4B25-86A8-029007EF4D73", "vulnerable": true}, {"criteria": "cpe:2.3:o:tp-link:nc260_firmware:1.5.2:200304:*:*:*:*:*:*", "matchCriteriaId": "54C3D856-5E56-4539-8437-495DCA5CB59E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:nc260:-:*:*:*:*:*:*:*", "matchCriteriaId": "0F82284F-1244-45BC-9F38-956219905C97", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:nc450_firmware:1.0.15:160920:*:*:*:*:*:*", "matchCriteriaId": "B98EA7FE-B277-44F1-99CD-393FB13D4CC4", "vulnerable": true}, {"criteria": "cpe:2.3:o:tp-link:nc450_firmware:1.1.2:161013:*:*:*:*:*:*", "matchCriteriaId": "72C02D43-51C5-480B-8957-99C9202E87DC", "vulnerable": true}, {"criteria": "cpe:2.3:o:tp-link:nc450_firmware:1.3.4:171130:*:*:*:*:*:*", "matchCriteriaId": "B1755D43-FD92-4DAE-B438-711A665C5790", "vulnerable": true}, {"criteria": "cpe:2.3:o:tp-link:nc450_firmware:1.5.3:200304:*:*:*:*:*:*", "matchCriteriaId": "59F5150F-6D80-4B94-9EA6-A20EF1AC7060", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:nc450:-:*:*:*:*:*:*:*", "matchCriteriaId": "71C122A0-FEC3-4482-A55D-09FA03A47F56", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Certain TP-Link devices allow Command Injection. This affects NC260 1.5.2 build 200304 and NC450 1.5.3 build 200304."}, {"lang": "es", "value": "Determinados dispositivos TP-Link permiten una inyecci\u00f3n de comandos. Esto afecta a NC260 versi\u00f3n 1.5.2 build 200304 y NC450 versi\u00f3n 1.5.3 build 200304."}], "id": "CVE-2020-12111", "lastModified": "2020-05-12T14:45:07.257", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-05-04T15:15:14.307", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "http://packetstormsecurity.com/files/157533/TP-LINK-Cloud-Cameras-NCXXX-SetEncryptKey-Command-Injection.html"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Mailing List", "Third Party Advisory"], "url": "https://seclists.org/fulldisclosure/2020/May/4"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://www.tp-link.com/us/security"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "nvd@nist.gov", "type": "Primary"}]}