CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
91.3%
An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text.
Vendor | Product | Version | CPE |
---|---|---|---|
vivotek | pt7135_firmware | 0300a | cpe:2.3:o:vivotek:pt7135_firmware:0300a:*:*:*:*:*:*:* |
vivotek | pt7135_firmware | 0400a | cpe:2.3:o:vivotek:pt7135_firmware:0400a:*:*:*:*:*:*:* |
vivotek | pt7135 | - | cpe:2.3:h:vivotek:pt7135:-:*:*:*:*:*:*:* |
www.exploit-db.com/exploits/25139
www.securityfocus.com/bid/59572
exchange.xforce.ibmcloud.com/vulnerabilities/83943
github.com/offensive-security/exploitdb/blob/master/exploits/hardware/webapps/25139.txt
packetstormsecurity.com/files/cve/CVE-2013-1594
www.coresecurity.com/advisories/vivotek-ip-cameras-multiple-vulnerabilities
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
91.3%