PT-2019-14799 · Petwant+1 · Petwant Pf-103+1

Publicado

2019-12-13

Atualizado

2020-08-24

CVE-2019-16731

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Petwant PF-103 firmware version 4.22.2.42 Petalk AI version 3.2.2.30

Description The issue allows remote attackers to initiate firmware upgrades and alter device settings through the udpServerSys service.

Recommendations For Petwant PF-103 firmware version 4.22.2.42, consider restricting access to the udpServerSys service until a patch is available. For Petalk AI version 3.2.2.30, restrict access to the udpServerSys service to minimize the risk of exploitation.

Exploit

Correção

Missing Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-306

Identificadores relacionados

CVE-2019-16731

Produtos afetados

Petalk Ai

Petwant Pf-103

PT-2019-14799 · Petwant+1 · Petwant Pf-103+1

CVE-2019-16731

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3