Vulnerabilities > CVE-2020-9349 - Missing Authorization vulnerability in Cacagoo Tv-288Zd-2Mp Firmware 3.4.2.0919

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
cacagoo
CWE-862
NVD
Published: 2020-04-02
Updated: 2021-07-21

Summary

The CACAGOO Cloud Storage Intelligent Camera TV-288ZD-2MP with firmware 3.4.2.0919 allows access to the RTSP service without a password.

Vulnerable Configurations

Part Description Count
OS
Cacagoo
1
Hardware
Cacagoo
1

Common Weakness Enumeration (CWE)

References