Cross-site request forgery (CSRF) vulnerability in cgi-bin/users.cgi in Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.1.0.8 and previous versions, allows remote malicious users to hijack the authentication of administrators for requests that add users.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
brickom 100ap_device_firmware 3.1.0.8 |
||
brickom wcb-100ap - |
||
brickom wfb-100ap - |
||
brickom ob-100ae - |
||
brickom osd-040e - |
||
brickom fb-100ap - |
||
brickom md-100ap - |
Vulmon