Vulnerability Details CVE-2008-4390
The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 sends cleartext configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by sniffing the network.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.031
EPSS Ranking 86.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/33032
- http://www.kb.cert.org/vuls/id/528993
- http://www.kb.cert.org/vuls/id/MAPG-7HJKSA
- http://www.linksys.com/servlet/Satellite?blobcol=urldata&blobheadername1=Content-Type&blobheadername2=Content-Disposition&blobheadervalue1=text%2Fplain&blobheadervalue2=inline%3B+filename%3DWVC54GC-V1.0_non-RoHS-v1.25_fw_ver.txt&blobkey=id&blobtable=MungoBlobs&blobwhere=1193776031728&ssbinary=true&lid=8104724130B17
- http://www.securityfocus.com/bid/32666
- http://secunia.com/advisories/33032
- http://www.kb.cert.org/vuls/id/528993
- http://www.kb.cert.org/vuls/id/MAPG-7HJKSA
- http://www.linksys.com/servlet/Satellite?blobcol=urldata&blobheadername1=Content-Type&blobheadername2=Content-Disposition&blobheadervalue1=text%2Fplain&blobheadervalue2=inline%3B+filename%3DWVC54GC-V1.0_non-RoHS-v1.25_fw_ver.txt&blobkey=id&blobtable=MungoBlobs&blobwhere=1193776031728&ssbinary=true&lid=8104724130B17
- http://www.securityfocus.com/bid/32666
Products affected by CVE-2008-4390
-
cpe:2.3:h:cisco:linksys_wvc54gc:-
-
cpe:2.3:o:cisco:linksys_wvc54gc_firmware:-