PT-2020-16702 · Basetech · Basetech Ge-131

Published

2020-11-17

Updated

2021-07-21

CVE-2020-27554

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions BASETech GE-131 BT-1837836 firmware version 20180921

Description The issue concerns a Cleartext Transmission of Sensitive Information, which could potentially leak sensitive information transmitted between the mobile app and the camera device. This occurs due to the transmission of sensitive data in an unencrypted format.

Recommendations For BASETech GE-131 BT-1837836 firmware version 20180921, consider implementing encryption for data transmitted between the mobile app and the camera device to prevent sensitive information leakage. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Cleartext Transmission of Sensitive Information

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-319CWE-522

Related Identifiers

CVE-2020-27554

Affected Products

Basetech Ge-131

PT-2020-16702 · Basetech · Basetech Ge-131

CVE-2020-27554

Weakness Enumeration

Related Identifiers

Affected Products

References · 4