{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T01:49:00.751","vulnerabilities":[{"cve":{"id":"CVE-2019-11878","sourceIdentifier":"cve@mitre.org","published":"2019-05-10T15:29:02.667","lastModified":"2024-11-21T04:21:56.580","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered on XiongMai Besder IP20H1 V4.02.R12.00035520.12012.047500.00200 cameras. An attacker on the same local network as the camera can craft a message with a size field larger than 0x80000000 and send it to the camera, related to an integer overflow or use of a negative number. This then crashes the camera for about 120 seconds."},{"lang":"es","value":"Fue encontrado un problema en las cámaras XiongMai Besder IP20H1 V4.02.R12.00035520.12012.047500.00200. Un atacante sobre la misma red local que la cámara puede crear un mensaje con un campo de tamaño mayor que 0x80000000 y enviarlo hacia la cámara, relacionado con un desbordamiento de enteros o el uso de número negativo. Esto entonces, bloquea la cámara durante unos 120 segundos."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:A/AC:L/Au:N/C:N/I:N/A:P","baseScore":3.3,"accessVector":"ADJACENT_NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"LOW","exploitabilityScore":6.5,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-190"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:xiongmaitech:besder_ip20h1_firmware:4.02.r12.00035520.12012.047500.00200:*:*:*:*:*:*:*","matchCriteriaId":"A81CFA32-6061-4D18-8A80-C628EA876E41"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:xiongmaitech:besder_ip20h1:-:*:*:*:*:*:*:*","matchCriteriaId":"96887E84-262F-469F-AB65-960E039A78D4"}]}]}],"references":[{"url":"http://blog.0x42424242.in/2019/04/besder-investigative-journey-part-1_24.html","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.youtube.com/watch?v=SnyPJtDDMFQ","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"http://blog.0x42424242.in/2019/04/besder-investigative-journey-part-1_24.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.youtube.com/watch?v=SnyPJtDDMFQ","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}