CVE-2021-47709

Vulnerability Description

COMMAX Smart Home System allows an unauthenticated attacker to change configuration and cause denial-of-service through the setconf endpoint. Attackers can trigger a denial-of-service scenario by sending a malformed request to the setconf endpoint.

Related Weaknesses (CWE)

CWE-306

References

https://www.commax.com
https://www.exploit-db.com/exploits/50209
https://www.vulncheck.com/advisories/commax-smart-home-ruvie-cctv-bridge-dvr-ser
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5666.php

FAQ

What is CVE-2021-47709?

CVE-2021-47709 is a documented vulnerability. COMMAX Smart Home System allows an unauthenticated attacker to change configuration and cause denial-of-service through the setconf endpoint. Attackers can trigger a denial-of-service scenario by send...

How severe is CVE-2021-47709?

CVSS scoring is not yet available for CVE-2021-47709. Check NVD for updates.

Is there a patch for CVE-2021-47709?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.