Vulnerability Details CVE-2023-0773
The vulnerability exists in Uniview IP Camera due to identification and authentication failure at its web-based management interface. A remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable device.
Successful exploitation of this vulnerability could allow the attacker to gain complete control of the targeted device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.3%
CVSS Severity
CVSS v3 Score 9.1
References
- https://global.uniview.com/About_Us/Security/Notice/202309/976482_140493_0.htm
- https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0270
- https://global.uniview.com/About_Us/Security/Notice/202309/976482_140493_0.htm
- https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0270
Products affected by CVE-2023-0773
-
cpe:2.3:h:uniview:ipc322lb-sf28-a:-
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:cipc-b2303.2.8.230105
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1213.6.5.230215
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1216.5.7.230109
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1219.2.67.221019
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1221.3.5.221202
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1222.3.8.230223
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1223.3.3.221123
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1225.3.3.221123
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1226.3.6.230105
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1228.2.65.230207
-
cpe:2.3:o:uniview:ipc322lb-sf28-a_firmware:dipc-b1229.1.67.230104