PT-2025-9924 · Smartwares · Smartwares Cameras
Marcin Wyczechowski
+2
·
Published
2025-03-06
·
Updated
2025-03-08
·
CVE-2024-13893
CVSS v4.0
7.5
High
| Vector | AV:L/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Smartwares cameras versions up to 3.3.0
Description
The issue concerns the sharing of the same credentials for the telnet service among Smartwares cameras, including models CIP-37210AT and C724IP, which run firmware versions up to 3.3.0. An attacker with physical access to the SPI connected memory can retrieve the hash of the password. The telnet service is enabled when a specific folder is created on the inserted SD card. The patching status and the range of affected devices and firmware versions remain unknown due to the vendor's lack of response. It is also possible that newer firmware versions may be vulnerable.
Recommendations
For versions up to 3.3.0, consider disabling the telnet service as a temporary workaround until the patching status is confirmed.
Restrict access to the SPI connected memory to minimize the risk of exploitation.
Avoid using the affected firmware versions until the vendor provides a fix or confirmation of the patching status.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Smartwares Cameras