Vulnerability Details CVE-2015-4464
Kguard Digital Video Recorder 104, 108, v2 does not have any authorization or authentication between an ActiveX client and the application server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://packetstormsecurity.com/files/132437/Kguard-Digital-Video-Recorder-Bypass-Issues.html
- http://www.securityfocus.com/archive/1/535822/100/0/threaded
- http://www.securityfocus.com/bid/73032
- https://www.academia.edu/11677554/Kguard_Digital_Video_Recorders_Multiple_Vulnerabilities
- http://packetstormsecurity.com/files/132437/Kguard-Digital-Video-Recorder-Bypass-Issues.html
- http://www.securityfocus.com/archive/1/535822/100/0/threaded
- http://www.securityfocus.com/bid/73032
- https://www.academia.edu/11677554/Kguard_Digital_Video_Recorders_Multiple_Vulnerabilities
Products affected by CVE-2015-4464
-
cpe:2.3:h:kguardsecurity:kg-sha104:-
-
cpe:2.3:h:kguardsecurity:kg-sha108:-
-
cpe:2.3:o:kguardsecurity:kg-sha104_firmware:2.0
-
cpe:2.3:o:kguardsecurity:kg-sha108_firmware:2.0