CVE-2023-30356 - OpenCVE

Missing Support for an Integrity Check in Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows attackers to update the device with crafted firmware

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Tenda	Cp3 Firmware Cp3

Configuration 1 [-]

AND

cpe:2.3:o:tenda:cp3_firmware:11.10.00.2211041355:*:*:*:*:*:*:*

cpe:2.3:h:tenda:cp3:-:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/SECloudUNIMORE/ACES/blob/master/Tenda/CP3/tmp_MU.md	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-05-10T00:00:00

Updated: 2023-05-10T00:00:00

Reserved: 2023-04-07T00:00:00

Link: CVE-2023-30356

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-05-10T16:15:12.187

Modified: 2023-05-17T20:06:55.363

Link: CVE-2023-30356

JSON object: View

Redhat Information

No data.

CWE

CWE-354