Описание
time.htm in the web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a78 allows remote attackers to bypass authentication and obtain administrative access by leveraging a cookie received in an HTTP response.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 2.2.26a77 (включая)
Одновременно
cpe:2.3:o:servision:hvg_video_gateway_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:servision:hvg400:-:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01019
Низкий
10 Critical
CVSS2
Дефекты
CWE-284
Связанные уязвимости
github
больше 3 лет назад
time.htm in the web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a78 allows remote attackers to bypass authentication and obtain administrative access by leveraging a cookie received in an HTTP response.
EPSS
Процентиль: 77%
0.01019
Низкий
10 Critical
CVSS2
Дефекты
CWE-284