Lucene search

[email protected]CVE-2009-1558

HistoryMay 06, 2009 - 4:30 p.m.

CVE-2009-1558

2009-05-0616:30:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2009-1558

directory traversal

cisco

linksys

wvc54gca

wireless video camera

firmware

vulnerability

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

7 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.8%

JSON

Directory traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote attackers to read arbitrary files via a %2e. (encoded dot dot) or an absolute pathname in the next_file parameter.

Affected configurations

NVD

Node

ciscowvc54gcaMatch1.00r22

ciscowvc54gcaMatch1.00r24

CPENameOperatorVersion
cisco:wvc54gcacisco wvc54gcaeq1.00r22
cisco:wvc54gcacisco wvc54gcaeq1.00r24

CPE	Name	Operator	Version
cisco:wvc54gca	cisco wvc54gca	eq	1.00r22
cisco:wvc54gca	cisco wvc54gca	eq	1.00r24

References

www.gnucitizen.org/blog/hacking-linksys-ip-cameras-pt-3/

www.securityfocus.com/bid/34713

www.vupen.com/english/advisories/2009/1173

exchange.xforce.ibmcloud.com/vulnerabilities/50231

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

7 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.8%

JSON

Related for CVE-2009-1558

nvd1 nuclei1 prion1 cvelist1