CVERadar

CVE-2024-31799

High Severity

Gncchome

SVRS

47/100

CVSSv3

4.6/10

EPSS

0.00026/1

CVE-2024-31799 is an information disclosure vulnerability affecting GNCC's GC2 Indoor Security Camera 1080P. It allows an attacker with physical access to the device to read the WiFi passphrase through the UART Debugging Port. While the CVSS score is 4.6, indicating a medium severity, the SOCRadar Vulnerability Risk Score (SVRS) is 47. This suggests the vulnerability, while not critical (SVRS > 80), still warrants attention. Exploitation requires physical access, limiting the scope of potential attacks. However, successful exploitation grants unauthorized access to the WiFi network, potentially compromising other devices on the network. This highlights the importance of securing physical access to IoT devices. The vulnerability falls under CWE-319, which signifies improper processing of security-critical data. Given the 'In The Wild' tag, proof of concept or active exploits exist, therefore patching or mitigation is recommended.

TAGS

In The Wild

VECTOR STRING

CVSS:3.1

AV:P

AC:L

PR:N

UI:N

S:U

C:H

I:N

A:N

PUBLICATION DATE2024-08-15

LAST MODIFIED2024-08-16

SOCRadar

AI Insight

Description

CVE-2024-31799 is an information disclosure vulnerability in GNCC's GC2 Indoor Security Camera 1080P. An attacker with physical access to the device can read the WiFi passphrase via the UART Debugging Port. This vulnerability has a CVSS score of 4.6 and an SVRS of 30, indicating a moderate severity level.

Key Insights

Physical Access Required: This vulnerability requires physical access to the affected device, making it less likely to be exploited remotely.
WiFi Passphrase Disclosure: An attacker can obtain the WiFi passphrase, which could allow them to access the victim's network and launch further attacks.
In The Wild: This vulnerability is actively exploited by hackers, highlighting the need for immediate action.

Mitigation Strategies

Update Firmware: Install the latest firmware update from the vendor to patch the vulnerability.
Disable UART Debugging Port: If possible, disable the UART Debugging Port to prevent unauthorized access.
Change WiFi Passphrase: Change the WiFi passphrase to a strong and unique one to minimize the impact of the vulnerability.
Monitor Network Traffic: Monitor network traffic for suspicious activity that may indicate exploitation of this vulnerability.

Additional Information

Threat Actors/APT Groups: No specific threat actors or APT groups have been identified as actively exploiting this vulnerability.
Exploit Status: Active exploits have been published.
CISA Warnings: The Cybersecurity and Infrastructure Security Agency (CISA) has not issued a warning for this vulnerability.

If users have additional queries regarding this incident, they can use the 'Ask to Analyst' feature, contact SOCRadar directly, or open a support ticket for more information if necessary.

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence

Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.

CREATE FREE ACCOUNT

CVE Details

Access comprehensive CVE information instantly

Real-time Tracking

Subscribe to CVEs and get instant updates

Exploit Analysis

Monitor related APT groups and threats

IOC Tracking

Analyze and track CVE-related IOCs

News

No news found for this CVE

Social Media

Vulmon Vulnerability Feed

@VulmonFeeds

2024-08-15

CVE-2024-31799 WiFi Passphrase Exposure in GNCC GC2 Security Camera An information disclosure issue exists in GNCC's GC2 Indoor Security Camera 1080P. It lets someone with physical access read the WiFi passphrase... https://t.co/6hhYv6Z0Yk

CVE

@CVEnew

2024-08-15

CVE-2024-31799 Information Disclosure in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to read the WiFi passphrase via the UART Debugging Port. https://t.co/vf9vQ2FDCN

Affected Software

Configuration 1

Type	Vendor	Product
OS	Gncchome	gncc_c2_firmware

References

Reference	Link
[email protected]	https://gncchome.com/collections/indoor-camera/products/c2-indoor-security-camera-1080p
[email protected]	https://www.nsideattacklogic.de/advisories/NSIDE-SA-2024-001
GITHUB	https://www.nsideattacklogic.de/advisories/NSIDE-SA-2024-001

CWE Details

CWE ID	CWE Name	Description
CWE-200	Exposure of Sensitive Information to an Unauthorized Actor	The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CWE-319	Cleartext Transmission of Sensitive Information	The software transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence