The Cisco RVS4000 4-port Gigabit Security Router prior to 1.3.2.0, PVC2300 Business Internet Video Camera prior to 1.1.2.6, WVC200 Wireless-G PTZ Internet Video Camera prior to 1.1.1.15, WVC210 Wireless-G PTZ Internet Video Camera prior to 1.1.1.15, and WVC2300 Wireless-G Business Internet Video Camera prior to 1.1.2.6 do not properly restrict read access to passwords, which allows context-dependent malicious users to obtain sensitive information, related to (1) access by remote authenticated users to a PVC2300 or WVC2300 via a crafted URL, (2) leveraging setup privileges on a WVC200 or WVC210, and (3) leveraging administrative privileges on an RVS4000, aka Bug ID CSCte64726.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco pvc2300 |
||
cisco wvc200 1.1.0.12 |
||
cisco wvc200 |
||
cisco wvc210 1.1.0.12 |
||
cisco wvc210 |
||
cisco wvc2300 |
||
cisco rvs4000 |
||
cisco rvs4000 1.3.0.5 |