Vulnerabilities > CVE-2020-19641 - Unspecified vulnerability in Insma Wifi Mini SPY 1080P HD Security IP Camera Firmware 1.9.7B

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

insma

NVD

Published: 2021-03-30

Updated: 2024-11-21

Summary

An issue was discovered in INSMA Wifi Mini Spy 1080P HD Security IP Camera 1.9.7 B. Authenticated attackers with the "Operator" Privilege can gain admin privileges via a crafted request to '/goform/formUserMng'.

Vulnerable Configurations

Part	Description	Count
OS	Insma Insma Wifi Mini SPY 1080P HD Security IP Camera Firmware 1.9.7B	1
Hardware	Insma Insma Wifi Mini SPY 1080P HD Security IP Camera -	1

References

https://xn--sb-lka.org/cve/INSMA.txt
https://xn--sb-lka.org/cve/INSMA.txt