Headline
CVE-2023-30356: ACES/tmp_MU.md at master · SECloudUNIMORE/ACES
Missing Support for an Integrity Check in Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows attackers to update the device with crafted firmware
Tenda CP3 Malicious Upgrade****CVE Number
TBA
Summary
It is possible to trigger the update of the Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 using maliciously-forged firmware images.
Tested Versions
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355
Product URLs
Vendor Website
CVSSv3 Score
TBA
CWE
- CWE-798: Use of Hard-coded Credentials
- CWE-353: Missing Support for Integrity Check
Details
By triggering the update procedure on the camera with a maliciously-modified firmware it is possibile to overwrite the official firmware and to prevent future updates. Any modification to the firmware is persistent.