Insecure Certificate Validation in Motorola MBP853 Camera Firmware

Insecure Certificate Validation in Motorola MBP853 Camera Firmware

CVE-2018-12499 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

The Motorola MBP853 firmware does not correctly validate server certificates. This allows for a Man in The Middle (MiTM) attack to take place between a Motorola MBP853 camera and the servers it communicates with. In one such instance, it was identified that the device was downloading what appeared to be a client certificate.

Learn more about our Cis Benchmark Audit For Server Software.