NVD

Id
39435  
Name
CVE-2013-3689  
Description
Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.0.6.16C1 and earlier, do not properly restrict access to configfile.dump, which allow remote attackers to obtain sensitive information (user names, passwords, and configurations) via a get action.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:N/A:N)  
Pub Date
2017-01-18  
Published
2013-10-04  
Modified Date
2013-10-07  
Seq
2013-3689  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
201048 39435 CVE-2013-3689 20130612 Security Analysis of IP video surveillance cameras  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22938 JVNDB-2013-004513 複数の Brickcom 製品のファームウェアにおける重要な情報を取得される脆弱性 複数の Brickcom 製品のファームウェアは、configfile.dump へのアクセスを適切に制限しないため、重要な情報 (ユーザ名、パスワード、および設定) を取得される脆弱性が存在します。 CVE-2013-3689 63631 CVE-2013-3689 39435 7.8 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-004513.html 2013-06-12 2013-10-08 View