Lucene search

[email protected]CVE-2009-1560

HistoryMay 06, 2009 - 4:30 p.m.

CVE-2009-1560

2009-05-0616:30:00

CWE-310

[email protected]

web.nvd.nist.gov

cisco

linksys

wvc54gca

firmware

security

vulnerability

cleartext

nvd

cve-2009-1560

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.7%

JSON

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in (1) pass_wd.htm and (2) Wsecurity.htm, which allows remote attackers to obtain sensitive information by reading the HTML source code.

Affected configurations

NVD

Node

ciscowvc54gcMatch1.00r22

ciscowvc54gcMatch1.00r24

CPENameOperatorVersion
cisco:wvc54gccisco wvc54gceq1.00r22
cisco:wvc54gccisco wvc54gceq1.00r24

CPE	Name	Operator	Version
cisco:wvc54gc	cisco wvc54gc	eq	1.00r22
cisco:wvc54gc	cisco wvc54gc	eq	1.00r24

References

www.gnucitizen.org/blog/hacking-linksys-ip-cameras-pt-4/

www.vupen.com/english/advisories/2009/1173

exchange.xforce.ibmcloud.com/vulnerabilities/50410

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.4 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.7%

JSON

Related for CVE-2009-1560

prion1 nvd1 cvelist1