RSS   Vulnerabilities for 'Wcb-100ap'   RSS

2013-10-01
 
CVE-2013-3690

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in cgi-bin/users.cgi in Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.1.0.8 and earlier, allows remote attackers to hijack the authentication of administrators for requests that add users.

 
2013-10-04
 
CVE-2013-3689

CWE-264
 

 
Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.0.6.16C1 and earlier, do not properly restrict access to configfile.dump, which allow remote attackers to obtain sensitive information (user names, passwords, and configurations) via a get action.

 

 >>> Vendor: Brickom 7 Products
Fb-100ap
Md-100ap
Ob-100ae
Osd-040e
Wcb-100ap
Wfb-100ap
100ap device firmware


Copyright 2024, cxsecurity.com

 

Back to Top