Vulnerability Details CVE-2013-1391
Authentication bypass vulnerability in the the web interface in Hunt CCTV, Capture CCTV, Hachi CCTV, NoVus CCTV, and Well-Vision Inc DVR systems allows a remote attacker to retrieve the device configuration.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.866
EPSS Ranking 99.4%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://www.securitybydefault.com/2013/01/12000-grabadores-de-video-expuestos-en.html
- https://www.rapid7.com/db/modules/auxiliary/scanner/misc/dvr_config_disclosure
- https://www.securityfocus.com/bid/57579/info
- http://www.securitybydefault.com/2013/01/12000-grabadores-de-video-expuestos-en.html
- https://www.rapid7.com/db/modules/auxiliary/scanner/misc/dvr_config_disclosure
- https://www.securityfocus.com/bid/57579/info
Products affected by CVE-2013-1391
-
cpe:2.3:h:capturecctv:cdr_0410ve:-
-
cpe:2.3:h:capturecctv:cdr_0820vde:-
-
cpe:2.3:h:hachi:hv-04rd_pro:-
-
cpe:2.3:h:hachi:hv-08rd_pro:-
-
cpe:2.3:h:huntcctv:dr6-704a4h:-
-
cpe:2.3:h:huntcctv:dr6-708a4h:-
-
cpe:2.3:h:huntcctv:dr6-7316a4h:-
-
cpe:2.3:h:huntcctv:dr6-7316a4hl:-
-
cpe:2.3:h:huntcctv:dvr-04ch:-
-
cpe:2.3:h:huntcctv:dvr-04nc:-
-
cpe:2.3:h:huntcctv:dvr-08ch:-
-
cpe:2.3:h:huntcctv:dvr-08nc:-
-
cpe:2.3:h:huntcctv:dvr-16ch:-
-
cpe:2.3:h:huntcctv:hdr-04kd:-
-
cpe:2.3:h:huntcctv:hdr-08kd:-
-
cpe:2.3:h:novuscctv:nv-dvr1204:-
-
cpe:2.3:h:novuscctv:nv-dvr1208:-
-
cpe:2.3:h:novuscctv:nv-dvr1216:-
-
cpe:2.3:h:vsp:tw-dvr604:-
-
cpe:2.3:h:vsp:tw-dvr616:-
-
cpe:2.3:o:capturecctv:cdr_0410ve_firmware:-
-
cpe:2.3:o:capturecctv:cdr_0820vde_firmware:-
-
cpe:2.3:o:hachi:hv-04rd_pro_firmware:-
-
cpe:2.3:o:hachi:hv-08rd_pro_firmware:-
-
cpe:2.3:o:huntcctv:dr6-704a4h_firmware:-
-
cpe:2.3:o:huntcctv:dr6-708a4h_firmware:-
-
cpe:2.3:o:huntcctv:dr6-7316a4h_firmware:-
-
cpe:2.3:o:huntcctv:dr6-7316a4hl_firmware:-
-
cpe:2.3:o:huntcctv:dvr-04ch_firmware:-
-
cpe:2.3:o:huntcctv:dvr-04nc_firmware:-
-
cpe:2.3:o:huntcctv:dvr-08ch_firmware:-
-
cpe:2.3:o:huntcctv:dvr-08nc_firmware:-
-
cpe:2.3:o:huntcctv:dvr-16ch_firmware:-
-
cpe:2.3:o:huntcctv:hdr-04kd_firmware:-
-
cpe:2.3:o:huntcctv:hdr-08kd_firmware:-
-
cpe:2.3:o:novuscctv:nv-dvr1204_firmware:-
-
cpe:2.3:o:novuscctv:nv-dvr1208_firmware:-
-
cpe:2.3:o:novuscctv:nv-dvr1216_firmware:-
-
cpe:2.3:o:vsp:tw-dvr604_firmware:-
-
cpe:2.3:o:vsp:tw-dvr616_firmware:-