← Volver a CVEs
CVE-2019-5034
MEDIUM5.3
Descripcion
An exploitable information disclosure vulnerability exists in the Weave Legacy Pairing functionality of Nest Cam IQ Indoor version 4620002. A set of specially crafted weave packets can cause an out of bounds read, resulting in information disclosure. An attacker can send packets to trigger this vulnerability.
Detalles CVE
Puntuacion CVSS v3.15.3
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado8/20/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
google:nest_cam_iq_indoorgoogle:nest_cam_iq_indoor_firmware
Debilidades (CWE)
CWE-125CWE-125
Referencias
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0797(talos-cna@cisco.com)
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0797(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.