exploitDog

CVE-2025-53702

Опубликовано: 23 окт. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Vilar VS-IPC1002 IP cameras are vulnerable to DoS (Denial-of-Service) attacks. An unauthenticated attacker on the same local network might send a crafted request to /cgi-bin/action endpoint and render the device completely unresponsive. A manual restart of the device is required. The vendor did not respond in any way. Only version 1.1.0.18 was tested, other versions might be vulnerable as well.

Ссылки

https://cert.pl/en/posts/2025/10/CVE-2025-53701
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:vimicro:vs-ipc1002_firmware:1.1.0.18:*:*:*:*:*:*:*

cpe:2.3:h:vimicro:vs-ipc1002:-:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.00029

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-755

Связанные уязвимости

GHSA-6fjm-ffgr-g6gp

CVSS3: 6.5

github

4 месяца назад

Vilar VS-IPC1002 IP cameras are vulnerable to DoS (Denial-of-Service) attacks. An unauthenticated attacker on the same local network might send a crafted request to /cgi-bin/action endpoint and render the device completely unresponsive. A manual restart of the device is required. The vendor did not respond in any way. Only version 1.1.0.18 was tested, other versions might be vulnerable as well.

EPSS

Процентиль: 8%

0.00029

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-755