CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-15745

Argus Surveillance DVR 4.0.0.0 devices allow Unauthenticated Directory Traversal, leading to File Disclosure via a ..%2F in the WEBACCOUNT.CGI RESULTPAGE parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.914

EPSS Ranking 99.6%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://hyp3rlinx.altervista.org/advisories/ARGUS-SURVEILLANCE-DVR-v4-UNAUTHENTICATED-PATH-TRAVERSAL-FILE-DISCLOSURE.txt
http://packetstormsecurity.com/files/149134/Argus-Surveillance-DVR-4.0.0.0-Directory-Traversal.html
https://www.exploit-db.com/exploits/45296/
http://hyp3rlinx.altervista.org/advisories/ARGUS-SURVEILLANCE-DVR-v4-UNAUTHENTICATED-PATH-TRAVERSAL-FILE-DISCLOSURE.txt
http://packetstormsecurity.com/files/149134/Argus-Surveillance-DVR-4.0.0.0-Directory-Traversal.html
https://www.exploit-db.com/exploits/45296/

Products affected by CVE-2018-15745

Argussurveillance » Dvr » Version: 4.0.0.0

cpe:2.3:a:argussurveillance:dvr:4.0.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15745

Products

Pricing

Contact Us