VAR-201908-0413
Vulnerability from variot - Updated: 2024-11-23 21:36Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X firmware version 2.1.0 and earlier, EOS-1D X MKII firmware version 1.1.6 and earlier, EOS-1D C firmware version 1.4.1 and earlier, EOS 5D MARK III firmware version 1.3.5 and earlier, EOS 5D MARK IV firmware version 1.2.0 and earlier, EOS 5DS firmware version 1.1.2 and earlier, EOS 5DS R firmware version 1.1.2 and earlier, EOS 6D firmware version 1.1.8 and earlier, EOS 6D MARK II firmware version 1.0.4 and earlier, EOS 7D MARK II firmware version 1.1.2 and earlier, EOS 70 D firmware version 1.1.2 and earlier, EOS 80 D firmware version 1.0.2 and earlier, EOS KISS X7I / EOS D REBEL T5I / EOS 700D firmware version 1.1.5 and earlier, EOS KISS X8I / EOS D REBEL T6I / EOS 750D firmware version 1.0.0 and earlier, EOS KISS X9I / EOS D REBEL T7I / EOS 800D firmware version 1.0.1 and earlier, EOS KISS X7 / EOS D REBEL SL1 / EOS 100D firmware version 1.0.1 and earlier, EOS KISS X9 / EOS D REBEL SL2 / EOS 200D firmware version 1.0.1 and earlier, EOS KISS X10 / EOS D REBEL SL3 / EOS 200D / EOS 250D firmware version 1.0.1 and earlier, EOS 8000D / EOS D REBEL T6S / EOS 760D firmware version 1.0.0 and earlier, EOS 9000D / EOS 77D firmware version 1.0.2 and earlier, EOS KISS X70 / EOS D REBEL T5 / EOS 1200D firmware version 1.0.2 and earlier, EOS D REBEL T5 RE / EOS 1200D MG / EOS HI firmware version 1.0.2 and earlier, EOS KISS X80 / EOS D REBEL T6 / EOS 1300D firmware version 1.1.0 and earlier, EOS KISS X90 / EOS D REBEL T7 / EOS 1500D / EOS 2000D firmware version 1.0.0 and earlier, EOS D REBEL T100 / EOS 3000D / EOS 4000D firmware version 1.0.0 and earlier, EOS R firmware version 1.3.0 and earlier, EOS RP firmware version 1.2.0 and earlier, EOS RP GOLD firmware version 1.2.0 and earlier, EOS M2 firmware version 1.0.3 and earlier, EOS M3 firmware version 1.2.0 and earlier, EOS M5 firmware version 1.0.1 and earlier, EOS M6 firmware version 1.0.1 and earlier, EOS M6(China) firmware version 5.0.0 and earlier, EOS M10 firmware version 1.1.0 and earlier, EOS M100 firmware version 1.0.0 and earlier, EOS KISS M / EOS M50 firmware version 1.0.2 and earlier) and PowerShot SX740 HS firmware version 1.0.1 and earlier, PowerShot SX70 HS firmware version 1.1.0 and earlier, and PowerShot G5Xmark II firmware version 1.0.1 and earlier allows an attacker on the same network segment to trigger the affected product being unresponsive or to execute arbitrary code on the affected product via SendObjectInfo command. plural EOS The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Canon EOS-1D X etc. are the products of Canon Corporation of Japan. Canon EOS-1D X is a digital camera of EOS series. EOS-1D C is a digital camera of EOS series. The PowerShot SX740 HS is a digital camera of the PowerShot series. A buffer error vulnerability exists in the PTP in the Canon EOS series and PowerShot series electronic cameras. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201908-0413",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "eos 8000d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos m2",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.3"
},
{
"model": "eos 5d mark iv",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.2.0"
},
{
"model": "eos m6\\",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "5.0.0"
},
{
"model": "eos-1d c",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.4.1"
},
{
"model": "eos 70d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.2"
},
{
"model": "eos kiss x9i",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos d rebel t6",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.0"
},
{
"model": "eos d rebel t5 re",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos d rebel t7",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos d rebel sl2",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos hi",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos m6",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos m100",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos r",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.3.0"
},
{
"model": "eos kiss x7i",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.5"
},
{
"model": "eos 700d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.5"
},
{
"model": "eos 5ds r",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.2"
},
{
"model": "eos 77d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos m50",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos 9000d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos 6d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.8"
},
{
"model": "eos 100d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos kiss x8i",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos d rebel t5",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos kiss x80",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.0"
},
{
"model": "eos kiss x10",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos rp gold",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.2.0"
},
{
"model": "powershot sx70 hs",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.0"
},
{
"model": "eos m3",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.2.0"
},
{
"model": "eos 3000d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos 7d mark ii",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.2"
},
{
"model": "eos d rebel t100",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos 5d mark iii",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.3.5"
},
{
"model": "eos rp",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.2.0"
},
{
"model": "eos d rebel t7i",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos 1200d mg",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos d rebel t6i",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos 4000d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos 800d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos-1d x mkii",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.6"
},
{
"model": "eos 1500d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos kiss m",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos 1200d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "powershot sx740 hs",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos kiss x70",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos kiss x9",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos kiss x90",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos 6d mark ii",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.4"
},
{
"model": "eos m10",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.0"
},
{
"model": "powershot g5xmark ii",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos 2000d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos d rebel sl3",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos 250d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos kiss x7",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos d rebel t6s",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos-1d x",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "2.1.0"
},
{
"model": "eos 80d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.2"
},
{
"model": "eos 750d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos 1300d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.0"
},
{
"model": "eos 200d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos 5ds",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.2"
},
{
"model": "eos d rebel t5i",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.1.5"
},
{
"model": "eos 760d",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.0"
},
{
"model": "eos m5",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos d rebel sl1",
"scope": "lte",
"trust": 1.0,
"vendor": "canon",
"version": "1.0.1"
},
{
"model": "eos-1d c",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-1d x mkii",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-1d x",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-5d mark iii",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-5d mark iv",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-5ds r",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-5ds",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-6d",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-70 d",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
},
{
"model": "eos-7d mark ii",
"scope": null,
"trust": 0.8,
"vendor": "canon",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:canon:eos-1d_c_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos-1d_x_mkii_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos-1d_x_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos_5d_mark_iii_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos_5d_mark_iv_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos_5ds_r_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos_5ds_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos_6d_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos_70d_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:canon:eos_7d_mark_ii_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
}
]
},
"cve": "CVE-2019-5994",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 6.5,
"id": "CVE-2019-5994",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 6.5,
"id": "VHN-157429",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:A/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "ADJACENT",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.8,
"id": "CVE-2019-5994",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2019-5994",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2019-5994",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201908-430",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-157429",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-157429"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-430"
},
{
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X firmware version 2.1.0 and earlier, EOS-1D X MKII firmware version 1.1.6 and earlier, EOS-1D C firmware version 1.4.1 and earlier, EOS 5D MARK III firmware version 1.3.5 and earlier, EOS 5D MARK IV firmware version 1.2.0 and earlier, EOS 5DS firmware version 1.1.2 and earlier, EOS 5DS R firmware version 1.1.2 and earlier, EOS 6D firmware version 1.1.8 and earlier, EOS 6D MARK II firmware version 1.0.4 and earlier, EOS 7D MARK II firmware version 1.1.2 and earlier, EOS 70 D firmware version 1.1.2 and earlier, EOS 80 D firmware version 1.0.2 and earlier, EOS KISS X7I / EOS D REBEL T5I / EOS 700D firmware version 1.1.5 and earlier, EOS KISS X8I / EOS D REBEL T6I / EOS 750D firmware version 1.0.0 and earlier, EOS KISS X9I / EOS D REBEL T7I / EOS 800D firmware version 1.0.1 and earlier, EOS KISS X7 / EOS D REBEL SL1 / EOS 100D firmware version 1.0.1 and earlier, EOS KISS X9 / EOS D REBEL SL2 / EOS 200D firmware version 1.0.1 and earlier, EOS KISS X10 / EOS D REBEL SL3 / EOS 200D / EOS 250D firmware version 1.0.1 and earlier, EOS 8000D / EOS D REBEL T6S / EOS 760D firmware version 1.0.0 and earlier, EOS 9000D / EOS 77D firmware version 1.0.2 and earlier, EOS KISS X70 / EOS D REBEL T5 / EOS 1200D firmware version 1.0.2 and earlier, EOS D REBEL T5 RE / EOS 1200D MG / EOS HI firmware version 1.0.2 and earlier, EOS KISS X80 / EOS D REBEL T6 / EOS 1300D firmware version 1.1.0 and earlier, EOS KISS X90 / EOS D REBEL T7 / EOS 1500D / EOS 2000D firmware version 1.0.0 and earlier, EOS D REBEL T100 / EOS 3000D / EOS 4000D firmware version 1.0.0 and earlier, EOS R firmware version 1.3.0 and earlier, EOS RP firmware version 1.2.0 and earlier, EOS RP GOLD firmware version 1.2.0 and earlier, EOS M2 firmware version 1.0.3 and earlier, EOS M3 firmware version 1.2.0 and earlier, EOS M5 firmware version 1.0.1 and earlier, EOS M6 firmware version 1.0.1 and earlier, EOS M6(China) firmware version 5.0.0 and earlier, EOS M10 firmware version 1.1.0 and earlier, EOS M100 firmware version 1.0.0 and earlier, EOS KISS M / EOS M50 firmware version 1.0.2 and earlier) and PowerShot SX740 HS firmware version 1.0.1 and earlier, PowerShot SX70 HS firmware version 1.1.0 and earlier, and PowerShot G5Xmark II firmware version 1.0.1 and earlier allows an attacker on the same network segment to trigger the affected product being unresponsive or to execute arbitrary code on the affected product via SendObjectInfo command. plural EOS The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Canon EOS-1D X etc. are the products of Canon Corporation of Japan. Canon EOS-1D X is a digital camera of EOS series. EOS-1D C is a digital camera of EOS series. The PowerShot SX740 HS is a digital camera of the PowerShot series. A buffer error vulnerability exists in the PTP in the Canon EOS series and PowerShot series electronic cameras. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc",
"sources": [
{
"db": "NVD",
"id": "CVE-2019-5994"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"db": "VULHUB",
"id": "VHN-157429"
}
],
"trust": 1.71
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2019-5994",
"trust": 2.5
},
{
"db": "JVN",
"id": "JVNVU97511331",
"trust": 2.5
},
{
"db": "JVNDB",
"id": "JVNDB-2019-007766",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201908-430",
"trust": 0.7
},
{
"db": "VULHUB",
"id": "VHN-157429",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-157429"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-430"
},
{
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"id": "VAR-201908-0413",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-157429"
}
],
"trust": 0.5209280275
},
"last_update_date": "2024-11-23T21:36:58.489000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Latest News",
"trust": 0.8,
"url": "https://www.canon-europe.com/support/product-security/"
},
{
"title": "Regarding the security advisory for Canon digital cameras related to PTP (Picture Transfer Protocol) communication functions and firmware update functions.",
"trust": 0.8,
"url": "https://www.usa.canon.com/internet/portal/us/home/support/product-advisories/detail/the-vulnerability-in-canon-digital-cameras"
},
{
"title": "\u30ad\u30e4\u30ce\u30f3\u88fd\u30c7\u30b8\u30bf\u30eb\u30ab\u30e1\u30e9\u306b\u304a\u3051\u308bPTP\uff08\u753b\u50cf\u8ee2\u9001\u30d7\u30ed\u30c8\u30b3\u30eb\uff09\u901a\u4fe1\u6a5f\u80fd\u304a\u3088\u3073\u30d5\u30a1\u30fc\u30e0\u30a6\u30a8\u30a2\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u6a5f\u80fd\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066",
"trust": 0.8,
"url": "https://cweb.canon.jp/e-support/products/eos-d/190806dilc-firm.html"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-119",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-157429"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.5,
"url": "http://jvn.jp/en/vu/jvnvu97511331/index.html"
},
{
"trust": 1.7,
"url": "https://www.canon-europe.com/support/product-security/"
},
{
"trust": 1.7,
"url": "https://cweb.canon.jp/e-support/products/eos-d/190806dilc-firm.html"
},
{
"trust": 1.7,
"url": "https://research.checkpoint.com/say-cheese-ransomware-ing-a-dslr-camera/"
},
{
"trust": 1.7,
"url": "https://www.usa.canon.com/internet/portal/us/home/support/product-advisories/detail/the-vulnerability-in-canon-digital-cameras"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-5994"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-5994"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-157429"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-430"
},
{
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-157429"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-430"
},
{
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-08-06T00:00:00",
"db": "VULHUB",
"id": "VHN-157429"
},
{
"date": "2019-08-20T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"date": "2019-08-06T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201908-430"
},
{
"date": "2019-08-06T19:15:13.880000",
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-08-16T00:00:00",
"db": "VULHUB",
"id": "VHN-157429"
},
{
"date": "2019-08-20T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-007766"
},
{
"date": "2019-08-30T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201908-430"
},
{
"date": "2024-11-21T04:45:52.453000",
"db": "NVD",
"id": "CVE-2019-5994"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote or local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201908-430"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural EOS Product buffer error vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-007766"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201908-430"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…