CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-4629

The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated users to hijack sessions via an unspecified interception method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.3%

CVSS Severity

CVSS v2 Score 8.5

References

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-261327.htm
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-261327.htm

Products affected by CVE-2013-4629

Huawei » Vp 9610 » Version: v100r002c02b019sp05

cpe:2.3:h:huawei:vp_9610:v100r002c02b019sp05
Huawei » Vp 9620 » Version: v100r002c02b019sp05

cpe:2.3:h:huawei:vp_9620:v100r002c02b019sp05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4629

Products

Pricing

Contact Us