{"vulnerability": "CVE-2020-2755", "sightings": [{"uuid": "50e2a9a9-f458-4da1-b13a-3200e7619292", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27556", "type": "seen", "source": "https://t.me/cibsecurity/17323", "content": "\u203c CVE-2020-27556 \u203c\n\nA predictable device ID in BASETech GE-131 BT-1837836 firmware 20180921 allows unauthenticated remote attackers to connect to the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T02:45:09.000000Z"}, {"uuid": "a8c7d932-8376-41ac-9017-e289ae053993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27557", "type": "seen", "source": "https://t.me/cibsecurity/17318", "content": "\u203c CVE-2020-27557 \u203c\n\nUnprotected Storage of Credentials vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows local users to gain access to the video streaming username and password via SQLite files containing plain text credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T02:36:28.000000Z"}, {"uuid": "0913dbf7-3508-4e06-a49b-49d1cb89b9b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27556", "type": "seen", "source": "https://t.me/cibsecurity/17317", "content": "\u203c CVE-2020-27556 \u203c\n\nA predictable device ID in BASETech GE-131 BT-1837836 firmware 20180921 allows unauthenticated remote attackers to connect to the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T02:36:27.000000Z"}, {"uuid": "2df1086f-8fd0-4870-a92b-a5afaa75c11e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27557", "type": "seen", "source": "https://t.me/cibsecurity/17320", "content": "\u203c CVE-2020-27557 \u203c\n\nUnprotected Storage of Credentials vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows local users to gain access to the video streaming username and password via SQLite files containing plain text credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T02:42:35.000000Z"}, {"uuid": "0d6fdc1b-5fb4-41a5-990b-69c350964b26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27556", "type": "seen", "source": "https://t.me/cibsecurity/17319", "content": "\u203c CVE-2020-27556 \u203c\n\nA predictable device ID in BASETech GE-131 BT-1837836 firmware 20180921 allows unauthenticated remote attackers to connect to the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T02:42:34.000000Z"}, {"uuid": "bf5f38e9-fdc1-4499-96d7-41ac270e49ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27558", "type": "seen", "source": "https://t.me/cibsecurity/16445", "content": "\u203c CVE-2020-27558 \u203c\n\nUse of an undocumented user in BASETech GE-131 BT-1837836 firmware 20180921 allows remote attackers to view the video stream.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T18:39:07.000000Z"}, {"uuid": "0cd9defa-c4c6-4669-b35c-8a03f3999e29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27554", "type": "seen", "source": "https://t.me/cibsecurity/16446", "content": "\u203c CVE-2020-27554 \u203c\n\nCleartext Transmission of Sensitive Information vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 exists which could leak sensitive information transmitted between the mobile app and the camera device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T18:39:09.000000Z"}, {"uuid": "75181a8c-1190-4b5e-a905-d2644e74891b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27553", "type": "seen", "source": "https://t.me/cibsecurity/16447", "content": "\u203c CVE-2020-27553 \u203c\n\nA directory traversal vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows unauthenticated remote attackers to gain access to sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T18:39:10.000000Z"}, {"uuid": "31de9b46-492f-4cce-b3d6-a67f8de5bb72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27555", "type": "seen", "source": "https://t.me/cibsecurity/16450", "content": "\u203c CVE-2020-27555 \u203c\n\nUse of default credentials for the telnet server in BASETech GE-131 BT-1837836 firmware 20180921 allows remote attackers to execute arbitrary system commands as the root user.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T18:39:14.000000Z"}, {"uuid": "0aa0325d-b748-4331-ae26-9871b8cde41d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27556", "type": "seen", "source": "https://t.me/cibsecurity/16451", "content": "\u203c CVE-2020-27556 \u203c\n\nA predictable device ID in BASETech GE-131 BT-1837836 firmware 20180921 allows unauthenticated remote attackers to connect to the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T18:39:15.000000Z"}, {"uuid": "3d7fbbd1-bf15-4b49-9b75-d7aa6526a900", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27557", "type": "seen", "source": "https://t.me/cibsecurity/16452", "content": "\u203c CVE-2020-27557 \u203c\n\nUnprotected Storage of Credentials vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows local users to gain access to the video streaming username and password via SQLite files containing plain text credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T18:39:16.000000Z"}, {"uuid": "a0f2ca28-419c-40e6-8ddc-08d991fded2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27557", "type": "seen", "source": "https://t.me/cibsecurity/17324", "content": "\u203c CVE-2020-27557 \u203c\n\nUnprotected Storage of Credentials vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows local users to gain access to the video streaming username and password via SQLite files containing plain text credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T02:45:10.000000Z"}, {"uuid": "aa295594-bb81-4917-a465-62493723bdf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27557", "type": "seen", "source": "https://t.me/cibsecurity/17332", "content": "\u203c CVE-2020-27557 \u203c\n\nUnprotected Storage of Credentials vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 allows local users to gain access to the video streaming username and password via SQLite files containing plain text credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T03:25:04.000000Z"}, {"uuid": "d86fefb3-8cd6-4d4e-a6c0-06c8948597d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27556", "type": "seen", "source": "https://t.me/cibsecurity/17331", "content": "\u203c CVE-2020-27556 \u203c\n\nA predictable device ID in BASETech GE-131 BT-1837836 firmware 20180921 allows unauthenticated remote attackers to connect to the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T03:25:03.000000Z"}]}