Lucene search

[email protected]CVE-2013-6023

HistoryNov 02, 2013 - 9:55 p.m.

CVE-2013-6023

2013-11-0221:55:02

CWE-22

[email protected]

web.nvd.nist.gov

cve-2013-6023

directory traversal

tvt td-2308ss-b dvr

firmware vulnerability

remote attack

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.152 Low

EPSS

Percentile

95.9%

JSON

Directory traversal vulnerability in the TVT TD-2308SS-B DVR with firmware 3.2.0.P-3520A-00 and earlier allows remote attackers to read arbitrary files via … (dot dot) in the URI.

Affected configurations

NVD

Node

tvtdvrMatchtd-2308ss-b-

AND

tvtdvr_firmwareRange≤3.2.0.p-3520a-03

tvtdvr_firmwareMatch3.1.6.p-1.0.2.1-03

tvtdvr_firmwareMatch3.1.7.b-1.0.2.1-00

tvtdvr_firmwareMatch3.1.43.b

tvtdvr_firmwareMatch3.1.43.p

tvtdvr_firmwareMatch3.1.75.b-1.0.2.1-00

tvtdvr_firmwareMatch3.1.81.b-1.0.2.1-00

tvtdvr_firmwareMatch3.1.83.b-1.0.2.1-00

tvtdvr_firmwareMatch3.1.83.p-1.0.4.2-03

tvtdvr_firmwareMatch3.1.87.p-1.0.4.2-17

tvtdvr_firmwareMatch3.1.91.p-1.0.2.1-03

tvtdvr_firmwareMatch3.1.92.p-1.0.2.1-00

tvtdvr_firmwareMatch3.1.93.b-1.0.2.1-17

tvtdvr_firmwareMatch3.2.0.b-1.0.2.1-17

tvtdvr_firmwareMatch3.2.0.p-1.0.2.1-03

tvtdvr_firmwareMatch3.2.0.p-1.0.2.1-17

tvtdvr_firmwareMatch3.2.0.p-1.0.6.0.32-00

CPENameOperatorVersion
tvt:dvrtvt dvreqtd-2308ss-b
tvt:dvr_firmwaretvt dvr firmwarele3.2.0.p-3520a-03
tvt:dvr_firmwaretvt dvr firmwareeq3.1.6.p-1.0.2.1-03
tvt:dvr_firmwaretvt dvr firmwareeq3.1.7.b-1.0.2.1-00
tvt:dvr_firmwaretvt dvr firmwareeq3.1.43.b
tvt:dvr_firmwaretvt dvr firmwareeq3.1.43.p
tvt:dvr_firmwaretvt dvr firmwareeq3.1.75.b-1.0.2.1-00
tvt:dvr_firmwaretvt dvr firmwareeq3.1.81.b-1.0.2.1-00
tvt:dvr_firmwaretvt dvr firmwareeq3.1.83.b-1.0.2.1-00
tvt:dvr_firmwaretvt dvr firmwareeq3.1.83.p-1.0.4.2-03

CPE	Name	Operator	Version
tvt:dvr	tvt dvr	eq	td-2308ss-b
tvt:dvr_firmware	tvt dvr firmware	le	3.2.0.p-3520a-03
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.6.p-1.0.2.1-03
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.7.b-1.0.2.1-00
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.43.b
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.43.p
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.75.b-1.0.2.1-00
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.81.b-1.0.2.1-00
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.83.b-1.0.2.1-00
tvt:dvr_firmware	tvt dvr firmware	eq	3.1.83.p-1.0.4.2-03