Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-3895

Опубликовано: 29 июл. 2014
Источник: nvd
CVSS2: 6.4
EPSS Низкий

Описание

The I-O DATA TS-WLCAM camera with firmware 1.06 and earlier, TS-WLCAM/V camera with firmware 1.06 and earlier, TS-WPTCAM camera with firmware 1.08 and earlier, TS-PTCAM camera with firmware 1.08 and earlier, TS-PTCAM/POE camera with firmware 1.08 and earlier, and TS-WLC2 camera with firmware 1.02 and earlier allow remote attackers to bypass authentication, and consequently obtain sensitive credential and configuration data, via unspecified vectors.

Комментарий

Per: http://jvn.jp/en/jp/JVN94592501/index.html

"Products Affected

TS-WLCAM firmware version 1.06 and earlier TS-WLCAM/V firmware version 1.06 and earlier TS-WPTCAM firmware version 1.08 and earlier TS-PTCAM firmware version 1.08 and earlier TS-PTCAM/POE firmware version 1.08 and earlier TS-WLC2 firmware version 1.02 and earlier"

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:iodata:ts-wlcam\/v_camera_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6 (включая)
cpe:2.3:h:iodata:ts-wlcam\/v_camera:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:o:iodata:ts-wptcam_camera_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.8 (включая)
cpe:2.3:h:iodata:ts-wptcam_camera:-:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:o:iodata:ts-wlcam_camera_firmware:*:*:*:*:*:*:*:*
Версия до 1.06 (включая)
cpe:2.3:h:iodata:ts-wlcam_camera:-:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:h:iodata:ts-ptcam\/poe_camera_firmware:*:*:*:*:*:*:*:*
Версия до 1.08 (включая)
cpe:2.3:h:iodata:ts-ptcam\/poe_camera:-:*:*:*:*:*:*:*
Конфигурация 5

Одновременно

cpe:2.3:o:iodata:ts-wlc2_camera_firmware:*:*:*:*:*:*:*:*
Версия до 1.02 (включая)
cpe:2.3:h:iodata:ts-wlc2_camera:-:*:*:*:*:*:*:*
Конфигурация 6

Одновременно

cpe:2.3:o:iodata:ts-ptcam_camera_firmware:*:*:*:*:*:*:*:*
Версия до 1.08 (включая)
cpe:2.3:h:iodata:ts-ptcam_camera:-:*:*:*:*:*:*:*

EPSS

Процентиль: 53%
0.00304
Низкий

6.4 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

github логотип

GHSA-2p6f-qh49-9c92

github
больше 3 лет назад

The I-O DATA TS-WLCAM camera with firmware 1.06 and earlier, TS-WLCAM/V camera with firmware 1.06 and earlier, TS-WPTCAM camera with firmware 1.08 and earlier, TS-PTCAM camera with firmware 1.08 and earlier, TS-PTCAM/POE camera with firmware 1.08 and earlier, and TS-WLC2 camera with firmware 1.02 and earlier allow remote attackers to bypass authentication, and consequently obtain sensitive credential and configuration data, via unspecified vectors.

EPSS

Процентиль: 53%
0.00304
Низкий

6.4 Medium

CVSS2

Дефекты

CWE-287