Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2013-3689

Published: 04/10/2013 Updated: 07/10/2013
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N
Subscribe to 100ap Device Firmware

Vulnerability Summary

Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.0.6.16C1 and previous versions, do not properly restrict access to configfile.dump, which allow remote malicious users to obtain sensitive information (user names, passwords, and configurations) via a get action.

Vulnerable Product Search on Vulmon Subscribe to Product

brickom 100ap_device_firmware

brickom ob-100ae -

brickom osd-040e -

brickom fb-100ap -

brickom md-100ap -

brickom wcb-100ap -

brickom wfb-100ap -

Exploits

Exploit DB: Brickcom 100ap Series Authentication Bypass / CSRF
Brickcom 100ap Series IP cameras suffer from authentication bypass and cross site request forgery vulnerabilities ...

References

CWE-264http://seclists.org/fulldisclosure/2013/Jun/84https://nvd.nist.govhttps://packetstormsecurity.com/files/122003/Brickcom-100ap-Series-Authentication-Bypass-CSRF.html
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook