RSS   Podatności dla 'Hvg video gateway firmware'   RSS

2015-02-03
 
CVE-2015-1469

CWE-264
 

 
time.htm in the web interface on SerVision HVG Video Gateway devices with firmware through 2.2.26a100 allows remote authenticated users to gain privileges by leveraging a cookie received in an HTTP response, a different vulnerability than CVE-2015-0929 and CVE-2015-0930.

 
 
CVE-2015-0930

CWE-255
 

 
The web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a100 has a hardcoded administrative password, which makes it easier for remote attackers to obtain access via an HTTP session.

 
 
CVE-2015-0929

CWE-284
 

 
time.htm in the web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a78 allows remote attackers to bypass authentication and obtain administrative access by leveraging a cookie received in an HTTP response.

 


Copyright 2024, cxsecurity.com

 

Back to Top