CVE-2013-3314

Опубликовано: 21 нояб. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Средний

Описание

The Loftek Nexus 543 IP Camera allows remote attackers to obtain (1) IP addresses via a request to get_realip.cgi or (2) firmware versions (ui and system), timestamp, serial number, p2p port number, and wifi status via a request to get_status.cgi.

Ссылки

http://www.exploit-db.com/exploits/27878
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/61969
Third Party Advisory
VDB Entry
http://www.tripwire.com/state-of-security/vulnerability-management/vulnerability-who-is-watching-your-ip-camera
Exploit
Third Party Advisory
http://www.exploit-db.com/exploits/27878
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/61969
Third Party Advisory
VDB Entry
http://www.tripwire.com/state-of-security/vulnerability-management/vulnerability-who-is-watching-your-ip-camera
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:loftek:nexus_543_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:loftek:nexus_543:-:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.24633

Средний

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-v5ww-wrm5-rv8m

github

почти 4 года назад