CVEDB API

Vulnerabilities

Vulnerable Software

Insma: >> Wifi Mini Spy 1080p Hd Security Ip Camera Firmware >> 1.9.7b Security Vulnerabilities

CVE-2020-19639

Cross Site Request Forgery (CSRF) vulnerability in INSMA Wifi Mini Spy 1080P HD Security IP Camera 1.9.7 B, via all fields to WebUI.

CVSS Score

8.8

EPSS Score

0.001

Published

2021-03-30

CVE-2020-19640

An issue was discovered in INSMA Wifi Mini Spy 1080P HD Security IP Camera 1.9.7 B. An unauthenticated attacker can reboot the device causing a Denial of Service, via a hidden reboot command to '/media/?action=cmd'.

CVSS Score

7.5

EPSS Score

0.016

Published

2021-03-30

CVE-2020-19641

An issue was discovered in INSMA Wifi Mini Spy 1080P HD Security IP Camera 1.9.7 B. Authenticated attackers with the "Operator" Privilege can gain admin privileges via a crafted request to '/goform/formUserMng'.

CVSS Score

8.8

EPSS Score

0.006

Published

2021-03-30

CVE-2020-19642

An issue was discovered in INSMA Wifi Mini Spy 1080P HD Security IP Camera 1.9.7 B. A local attacker can execute arbitrary code via editing the 'recdata.db' file to call a specially crafted GoAhead ASP-file on the SD card.

CVSS Score

6.2

EPSS Score

0.001

Published

2021-03-30

CVE-2020-19643

Cross Site Scripting (XSS) vulnerability in INSMA Wifi Mini Spy 1080P HD Security IP Camera 1.9.7 B via all fields in the FTP settings page to the "goform/formSetFtpCfg" settings page.

CVSS Score

6.1

EPSS Score

0.002

Published

2021-03-30

Page 1

Vulnerabilities

Vulnerable Software

Insma: >> Wifi Mini Spy 1080p Hd Security Ip Camera Firmware >> 1.9.7b Security Vulnerabilities

Products

Pricing

Contact Us