Vulnerability Details CVE-2018-9031
The login interface on TNLSoftSolutions Sentry Vision 3.x devices provides password disclosure by reading an "if(pwd ==" line in the HTML source code. This means, in effect, that authentication occurs only on the client side.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 5.0
References
- https://gist.github.com/pabloonicarres/c2c284ca7b025d629da39087445ed15d#file-sentryvision_authentication_bypass-sh
- https://www.youtube.com/watch?v=pLMH9vGPRCo
- https://gist.github.com/pabloonicarres/c2c284ca7b025d629da39087445ed15d#file-sentryvision_authentication_bypass-sh
- https://www.youtube.com/watch?v=pLMH9vGPRCo
Products affected by CVE-2018-9031
-
cpe:2.3:a:tnlsoftsolutions:sentry_vision:3.0
-
cpe:2.3:a:tnlsoftsolutions:sentry_vision:3.1
-
cpe:2.3:a:tnlsoftsolutions:sentry_vision:3.2