Vulnerabilities > CVE-2020-22002 - Server-Side Request Forgery (SSRF) vulnerability in Inim products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

inim

CWE-918

NVD

Published: 2021-04-29

Updated: 2021-05-05

Summary

An Unauthenticated Server-Side Request Forgery (SSRF) vulnerability exists in Inim Electronics Smartliving SmartLAN/G/SI <=6.x within the GetImage functionality. The application parses user supplied data in the GET parameter 'host' to construct an image request to the service through onvif.cgi. Since no validation is carried out on the parameter, an attacker can specify an external domain and force the application to make an HTTP request to an arbitrary destination host.

Vulnerable Configurations

Part	Description	Count
OS	Inim Inim Smartliving 505 Firmware - Inim Smartliving 515 Firmware - Inim Smartliving 1050 Firmware - Inim Smartliving 1050G3 Firmware - Inim Smartliving 10100L Firmware - Inim Smartliving 10100Lg3 Firmware -	6
Hardware	Inim Inim Smartliving 505 - Inim Smartliving 515 - Inim Smartliving 1050 - Inim Smartliving 1050G3 - Inim Smartliving 10100L - Inim Smartliving 10100Lg3 -	6

Common Weakness Enumeration (CWE)

CWE-918 - Server-Side Request Forgery (SSRF)

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References