CVE-2020-11949

testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's local filesystem. For example, this affects IT9388-HT devices.

Published: 2020-05-28 Last update: 2024-11-21 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2020-11949 is rated Moderate Risk (44.1/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 0.33%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2020-11949

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2025-03-30 0.64% 0.33% -0.31%
2 2025-03-29 0.33% 0.64% +0.31%
3 2025-03-17 0.33%

Full EPSS history (8 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2020-11949

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
6.5 3.1 MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Click to expand
Attack vector (AV:N)
Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:L)
Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L)
A normal user session is enough; they don’t have to be admin.
User interaction (UI:N)
Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H)
Serious risk that confidential data gets exposed in a big way.
Integrity (I:N)
Data isn’t meaningfully altered or forged.
Availability (A:N)
Service keeps running; no real outage angle.
 2.8 3.6 [email protected]
4.0 2.0 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:S)
A single authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:N)
No integrity impact.
Availability impact (A:N)
No availability impact.
 8.0 2.9 [email protected]

Weakness enumeration for CVE-2020-11949

Affected software / configurations for CVE-2020-11949

Vendor Product Version Raw CPE
vivotek cc9381-hv_firmware <= 0222g cpe:2.3:o:vivotek:cc9381-hv_firmware:*:*:*:*:*:*:*:*
vivotek fd9360-h_firmware <= 0222g cpe:2.3:o:vivotek:fd9360-h_firmware:*:*:*:*:*:*:*:*
vivotek fd9368-htv_firmware <= 0222g cpe:2.3:o:vivotek:fd9368-htv_firmware:*:*:*:*:*:*:*:*
vivotek fd9380-h_firmware <= 0222g cpe:2.3:o:vivotek:fd9380-h_firmware:*:*:*:*:*:*:*:*
vivotek fd9388-htv_firmware <= 0222g cpe:2.3:o:vivotek:fd9388-htv_firmware:*:*:*:*:*:*:*:*
vivotek ib9360-h_firmware <= 0222g cpe:2.3:o:vivotek:ib9360-h_firmware:*:*:*:*:*:*:*:*
vivotek ib9368-ht_firmware <= 0222g cpe:2.3:o:vivotek:ib9368-ht_firmware:*:*:*:*:*:*:*:*
vivotek ib9380-h_firmware <= 0222g cpe:2.3:o:vivotek:ib9380-h_firmware:*:*:*:*:*:*:*:*
vivotek ib9388-ht_firmware <= 0222g cpe:2.3:o:vivotek:ib9388-ht_firmware:*:*:*:*:*:*:*:*
vivotek it9360-h_firmware <= 0222g cpe:2.3:o:vivotek:it9360-h_firmware:*:*:*:*:*:*:*:*
vivotek it9380-h_firmware <= 0222g cpe:2.3:o:vivotek:it9380-h_firmware:*:*:*:*:*:*:*:*
vivotek it9388-ht_firmware <= 0222g cpe:2.3:o:vivotek:it9388-ht_firmware:*:*:*:*:*:*:*:*
vivotek md9560-dh_firmware <= 0222g cpe:2.3:o:vivotek:md9560-dh_firmware:*:*:*:*:*:*:*:*
vivotek md9560-h_firmware <= 0222g cpe:2.3:o:vivotek:md9560-h_firmware:*:*:*:*:*:*:*:*
vivotek fd9366-hv_firmware <= 0222g cpe:2.3:o:vivotek:fd9366-hv_firmware:*:*:*:*:*:*:*:*
vivotek fd9166-hn_firmware <= 0222g cpe:2.3:o:vivotek:fd9166-hn_firmware:*:*:*:*:*:*:*:*
vivotek fe9380-hv_firmware <= 0222k cpe:2.3:o:vivotek:fe9380-hv_firmware:*:*:*:*:*:*:*:*
vivotek cc8160_firmware <= 0113b cpe:2.3:o:vivotek:cc8160_firmware:*:*:*:*:*:*:*:*
vivotek cc8160\(hs\)_firmware <= 0113b cpe:2.3:o:vivotek:cc8160\(hs\)_firmware:*:*:*:*:*:*:*:*
vivotek cc8370-hv_firmware <= 0213b cpe:2.3:o:vivotek:cc8370-hv_firmware:*:*:*:*:*:*:*:*
vivotek cc8371-hv_firmware <= 0113b cpe:2.3:o:vivotek:cc8371-hv_firmware:*:*:*:*:*:*:*:*
vivotek cd8371-hntv_firmware <= 0113b cpe:2.3:o:vivotek:cd8371-hntv_firmware:*:*:*:*:*:*:*:*
vivotek cd8371-hnvf2_firmware <= 0113b cpe:2.3:o:vivotek:cd8371-hnvf2_firmware:*:*:*:*:*:*:*:*
vivotek fd8166a_firmware <= 0213b cpe:2.3:o:vivotek:fd8166a_firmware:*:*:*:*:*:*:*:*
vivotek fd8166a-n_firmware <= 0113b cpe:2.3:o:vivotek:fd8166a-n_firmware:*:*:*:*:*:*:*:*
vivotek fd8167a_firmware <= 0213b cpe:2.3:o:vivotek:fd8167a_firmware:*:*:*:*:*:*:*:*
vivotek fd8169a_firmware <= 0213b cpe:2.3:o:vivotek:fd8169a_firmware:*:*:*:*:*:*:*:*
vivotek fd8367a-v_firmware <= 0213b cpe:2.3:o:vivotek:fd8367a-v_firmware:*:*:*:*:*:*:*:*
vivotek fd8369a-v_firmware <= 0213b cpe:2.3:o:vivotek:fd8369a-v_firmware:*:*:*:*:*:*:*:*
vivotek fd816ba-hf2_firmware <= 0113b cpe:2.3:o:vivotek:fd816ba-hf2_firmware:*:*:*:*:*:*:*:*
vivotek fd836ba-hvf2_firmware <= 0113b cpe:2.3:o:vivotek:fd836ba-hvf2_firmware:*:*:*:*:*:*:*:*
vivotek fd836ba-htv_firmware <= 0113b cpe:2.3:o:vivotek:fd836ba-htv_firmware:*:*:*:*:*:*:*:*
vivotek fd836ba-ehvf2_firmware <= 0113b cpe:2.3:o:vivotek:fd836ba-ehvf2_firmware:*:*:*:*:*:*:*:*
vivotek fd816ba-ht_firmware <= 0113b cpe:2.3:o:vivotek:fd816ba-ht_firmware:*:*:*:*:*:*:*:*
vivotek fd836ba-ehtv_firmware <= 0113b cpe:2.3:o:vivotek:fd836ba-ehtv_firmware:*:*:*:*:*:*:*:*
vivotek ib836ba-ehf3_firmware <= 0113b cpe:2.3:o:vivotek:ib836ba-ehf3_firmware:*:*:*:*:*:*:*:*
vivotek ib836ba-eht_firmware <= 0113b cpe:2.3:o:vivotek:ib836ba-eht_firmware:*:*:*:*:*:*:*:*
vivotek ib836ba-hf3_firmware <= 0113b cpe:2.3:o:vivotek:ib836ba-hf3_firmware:*:*:*:*:*:*:*:*
vivotek ib836ba-ht_firmware <= 0113b cpe:2.3:o:vivotek:ib836ba-ht_firmware:*:*:*:*:*:*:*:*
vivotek fd816b-hf2_firmware <= 0113b cpe:2.3:o:vivotek:fd816b-hf2_firmware:*:*:*:*:*:*:*:*
vivotek fd816b-ht_firmware <= 0113b cpe:2.3:o:vivotek:fd816b-ht_firmware:*:*:*:*:*:*:*:*
vivotek fd836b-ehtv_firmware <= 0113b cpe:2.3:o:vivotek:fd836b-ehtv_firmware:*:*:*:*:*:*:*:*
vivotek fd836b-ehvf2_firmware <= 0113b cpe:2.3:o:vivotek:fd836b-ehvf2_firmware:*:*:*:*:*:*:*:*
vivotek fd836b-htv_firmware <= 0113b cpe:2.3:o:vivotek:fd836b-htv_firmware:*:*:*:*:*:*:*:*
vivotek fd836b-hvf2_firmware <= 0113b cpe:2.3:o:vivotek:fd836b-hvf2_firmware:*:*:*:*:*:*:*:*
vivotek ib836b-ehf3_firmware <= 0113b cpe:2.3:o:vivotek:ib836b-ehf3_firmware:*:*:*:*:*:*:*:*
vivotek ib836b-eht_firmware <= 0113b cpe:2.3:o:vivotek:ib836b-eht_firmware:*:*:*:*:*:*:*:*
vivotek ib836b-hf3_firmware <= 0113b cpe:2.3:o:vivotek:ib836b-hf3_firmware:*:*:*:*:*:*:*:*
vivotek ib836b-hrf3_firmware <= 0113b cpe:2.3:o:vivotek:ib836b-hrf3_firmware:*:*:*:*:*:*:*:*
vivotek ib836b-ht_firmware <= 0113b cpe:2.3:o:vivotek:ib836b-ht_firmware:*:*:*:*:*:*:*:*
vivotek fd816ca-hf2_firmware <= 0113b cpe:2.3:o:vivotek:fd816ca-hf2_firmware:*:*:*:*:*:*:*:*
vivotek fd816c-hf2_firmware <= 0213b cpe:2.3:o:vivotek:fd816c-hf2_firmware:*:*:*:*:*:*:*:*
vivotek fd8182-f1_firmware <= 0113b cpe:2.3:o:vivotek:fd8182-f1_firmware:*:*:*:*:*:*:*:*
vivotek fd8182-f2_firmware <= 0113b cpe:2.3:o:vivotek:fd8182-f2_firmware:*:*:*:*:*:*:*:*
vivotek fd8182-t_firmware <= 0113b cpe:2.3:o:vivotek:fd8182-t_firmware:*:*:*:*:*:*:*:*
vivotek fd8382-etv_firmware <= 0113b cpe:2.3:o:vivotek:fd8382-etv_firmware:*:*:*:*:*:*:*:*
vivotek fd8382-evf2_firmware <= 0113b cpe:2.3:o:vivotek:fd8382-evf2_firmware:*:*:*:*:*:*:*:*
vivotek fd8382-tv_firmware <= 0113b cpe:2.3:o:vivotek:fd8382-tv_firmware:*:*:*:*:*:*:*:*
vivotek fd8382-vf2_firmware <= 0113b cpe:2.3:o:vivotek:fd8382-vf2_firmware:*:*:*:*:*:*:*:*
vivotek ib8382-ef3_firmware <= 0113b cpe:2.3:o:vivotek:ib8382-ef3_firmware:*:*:*:*:*:*:*:*
vivotek ib8382-et_firmware <= 0113b cpe:2.3:o:vivotek:ib8382-et_firmware:*:*:*:*:*:*:*:*
vivotek ib8382-f3_firmware <= 0213b cpe:2.3:o:vivotek:ib8382-f3_firmware:*:*:*:*:*:*:*:*
vivotek ib8382-t_firmware <= 0113b cpe:2.3:o:vivotek:ib8382-t_firmware:*:*:*:*:*:*:*:*
vivotek fd8366-v_firmware <= 0113b cpe:2.3:o:vivotek:fd8366-v_firmware:*:*:*:*:*:*:*:*
vivotek ib8367a_firmware <= 0213b cpe:2.3:o:vivotek:ib8367a_firmware:*:*:*:*:*:*:*:*
vivotek ib8369a_firmware <= 0213b cpe:2.3:o:vivotek:ib8369a_firmware:*:*:*:*:*:*:*:*
vivotek ip8166_firmware <= 0213b cpe:2.3:o:vivotek:ip8166_firmware:*:*:*:*:*:*:*:*
vivotek md8563-deh_firmware <= 0113b cpe:2.3:o:vivotek:md8563-deh_firmware:*:*:*:*:*:*:*:*
vivotek md8563-eh_firmware <= 0113b cpe:2.3:o:vivotek:md8563-eh_firmware:*:*:*:*:*:*:*:*
vivotek md8564-eh_firmware <= 0113b cpe:2.3:o:vivotek:md8564-eh_firmware:*:*:*:*:*:*:*:*
vivotek md8565-n_firmware <= 0113b cpe:2.3:o:vivotek:md8565-n_firmware:*:*:*:*:*:*:*:*
vivotek vc8101_firmware <= 0113b cpe:2.3:o:vivotek:vc8101_firmware:*:*:*:*:*:*:*:*
vivotek vs8100-v2_firmware <= 0113b cpe:2.3:o:vivotek:vs8100-v2_firmware:*:*:*:*:*:*:*:*
vivotek ip8160_firmware <= 0113a cpe:2.3:o:vivotek:ip8160_firmware:*:*:*:*:*:*:*:*
vivotek ip8160-w_firmware <= 0113a cpe:2.3:o:vivotek:ip8160-w_firmware:*:*:*:*:*:*:*:*
vivotek ib8360_firmware <= 0113a cpe:2.3:o:vivotek:ib8360_firmware:*:*:*:*:*:*:*:*
vivotek ib8360-w_firmware <= 0113a cpe:2.3:o:vivotek:ib8360-w_firmware:*:*:*:*:*:*:*:*
vivotek ip9171-hp_firmware <= 0113b cpe:2.3:o:vivotek:ip9171-hp_firmware:*:*:*:*:*:*:*:*
vivotek ip9181-h_firmware <= 0113b cpe:2.3:o:vivotek:ip9181-h_firmware:*:*:*:*:*:*:*:*
vivotek fd9371-ehtv_firmware <= 0113b cpe:2.3:o:vivotek:fd9371-ehtv_firmware:*:*:*:*:*:*:*:*

References for CVE-2020-11949

cvelogic Threat Intelligence