Vulnerabilities > Basetech > GE 131 BT 1837836 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-11-17 CVE-2020-27558 Improper Authentication vulnerability in Basetech Ge-131 Bt-1837836 Firmware 20180921
Use of an undocumented user in BASETech GE-131 BT-1837836 firmware 20180921 allows remote attackers to view the video stream.
network
low complexity
basetech CWE-287
6.5
6.5
2020-11-17 CVE-2020-27557 Insufficiently Protected Credentials vulnerability in Basetech Ge-131 Bt-1837836 Firmware 20180921
Unprotected Storage of Credentials vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows local users to gain access to the video streaming username and password via SQLite files containing plain text credentials.
local
low complexity
basetech CWE-522
5.5
5.5
2020-11-17 CVE-2020-27556 Use of Insufficiently Random Values vulnerability in Basetech Ge-131 Bt-1837836 Firmware 20180921
A predictable device ID in BASETech GE-131 BT-1837836 firmware 20180921 allows unauthenticated remote attackers to connect to the device.
network
low complexity
basetech CWE-330
5.3
5.3