Vulnerability Details CVE-2020-11681
Castel NextGen DVR v1.0.0 stores and displays credentials for the associated SMTP server in cleartext. Low privileged users can exploit this to create an administrator user and obtain the SMTP credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.0%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 4.0
References
- http://packetstormsecurity.com/files/157954/Castel-NextGen-DVR-1.0.0-Bypass-CSRF-Disclosure.html
- http://seclists.org/fulldisclosure/2020/Jun/8
- https://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypass
- http://packetstormsecurity.com/files/157954/Castel-NextGen-DVR-1.0.0-Bypass-CSRF-Disclosure.html
- http://seclists.org/fulldisclosure/2020/Jun/8
- https://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypass
Products affected by CVE-2020-11681
-
cpe:2.3:h:castel:nextgen_dvr:-
-
cpe:2.3:o:castel:nextgen_dvr_firmware:1.0.0