CVE-2015-2884

Опубликовано: 10 апр. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Philips In.Sight B120/37 allows remote attackers to obtain sensitive information via a direct request, related to yoics.net URLs, stream.m3u8 URIs, and cam_service_enable.cgi.

Ссылки

http://www.securityfocus.com/bid/97683
https://community.rapid7.com/community/infosec/blog/2015/09/02/iotsec-disclosure-10-new-vulns-for-several-video-baby-monitors
Exploit
Third Party Advisory
http://www.securityfocus.com/bid/97683
https://community.rapid7.com/community/infosec/blog/2015/09/02/iotsec-disclosure-10-new-vulns-for-several-video-baby-monitors
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:philips:in.sight_b120\\37:-:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.00315

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-chr6-vh2q-h38g