CVE-2013-3687

2022-10-0316:14:44

CWE-310

[email protected]

web.nvd.nist.gov

cve-2013-3687

nvd

airlive

poe2600hd

poe250hd

poe200hd

od-325hd

od-2025hd

od-2060hd

poe100hd

security vulnerability

sensitive information disclosure

7.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.001 Low

EPSS

Percentile

46.1%

JSON

AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models use cleartext to store sensitive information, which allows attackers to obtain passwords, user names, and other sensitive information by reading an unspecified backup file.

Affected configurations

NVD

Node

ovislinkairlive_od-2025hdMatch-

ovislinkairlive_od-2060hdMatch-

ovislinkairlive_poe100hdMatch-

ovislinkairlive_poe200hdMatch-

ovislinkairlive_poe250hdMatch-

ovislinkairlive_poe2600hdMatch-

CPENameOperatorVersion
ovislink:airlive_od-2025hdovislink airlive od-2025hdeq-
ovislink:airlive_od-2060hdovislink airlive od-2060hdeq-
ovislink:airlive_poe100hdovislink airlive poe100hdeq-
ovislink:airlive_poe200hdovislink airlive poe200hdeq-
ovislink:airlive_poe250hdovislink airlive poe250hdeq-
ovislink:airlive_poe2600hdovislink airlive poe2600hdeq-

CPE	Name	Operator	Version
ovislink:airlive_od-2025hd	ovislink airlive od-2025hd	eq	-
ovislink:airlive_od-2060hd	ovislink airlive od-2060hd	eq	-
ovislink:airlive_poe100hd	ovislink airlive poe100hd	eq	-
ovislink:airlive_poe200hd	ovislink airlive poe200hd	eq	-
ovislink:airlive_poe250hd	ovislink airlive poe250hd	eq	-
ovislink:airlive_poe2600hd	ovislink airlive poe2600hd	eq	-