1. Home
  2. CVE Database
  3. CVE-2019-12919
MEDIUM · 5.5

CVE-2019-12919

On Shenzhen Cylan Clever Dog Smart Camera DOG-2W and DOG-2W-V4 devices, an attacker on the local network has unauthenticated access to the internal SD card via the HTTP service on port 8000. The HTTP ...

Vulnerability Description

On Shenzhen Cylan Clever Dog Smart Camera DOG-2W and DOG-2W-V4 devices, an attacker on the local network has unauthenticated access to the internal SD card via the HTTP service on port 8000. The HTTP web server on the camera allows anyone to view or download the video archive recorded and saved on the external memory card attached to the device.

CVSS Score

5.5

MEDIUM

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
CylanClever Dog Smart Camera Panorama Dog-2W Firmware-
CylanClever Dog Smart Camera Panorama Dog-2W-
CylanClever Dog Smart Camera Plus Dog-2W-V4 Firmware-
CylanClever Dog Smart Camera Plus Dog-2W-V4-

Related Weaknesses (CWE)

CWE-306

References

FAQ

What is CVE-2019-12919?

CVE-2019-12919 is a vulnerability with a CVSS score of 5.5 (MEDIUM). On Shenzhen Cylan Clever Dog Smart Camera DOG-2W and DOG-2W-V4 devices, an attacker on the local network has unauthenticated access to the internal SD card via the HTTP service on port 8000. The HTTP ...

How severe is CVE-2019-12919?

CVE-2019-12919 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-12919?

Check the references section above for vendor advisories and patch information. Affected products include: Cylan Clever Dog Smart Camera Panorama Dog-2W Firmware, Cylan Clever Dog Smart Camera Panorama Dog-2W, Cylan Clever Dog Smart Camera Plus Dog-2W-V4 Firmware, Cylan Clever Dog Smart Camera Plus Dog-2W-V4.