CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12675

The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) does not perform origin checks on URLs that the camera's web interface redirects a user to. This can be leveraged to send a user to an unexpected endpoint.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.197

EPSS Ranking 95.1%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 5.8

References

Products affected by CVE-2018-12675

Sv3c » Sv-B01poe-1080p-L » Version: N/A

cpe:2.3:h:sv3c:sv-b01poe-1080p-l:-
Sv3c » Sv-B11vpoe-1080p-L » Version: N/A

cpe:2.3:h:sv3c:sv-b11vpoe-1080p-l:-
Sv3c » Sv-D02poe-1080p-L » Version: N/A

cpe:2.3:h:sv3c:sv-d02poe-1080p-l:-
Sv3c » H.264 Poe Ip Camera Firmware » Version: v2.3.4.2103-s50-ntd-b20170508b

cpe:2.3:o:sv3c:h.264_poe_ip_camera_firmware:v2.3.4.2103-s50-ntd-b20170508b
Sv3c » H.264 Poe Ip Camera Firmware » Version: v2.3.4.2103-s50-ntd-b20170823b

cpe:2.3:o:sv3c:h.264_poe_ip_camera_firmware:v2.3.4.2103-s50-ntd-b20170823b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12675

Products

Pricing

Contact Us