Lucene search
HistoryFeb 03, 2015 - 10:59 p.m.
CVE-2015-0929
servision
hvg video gateway
firmware
authentication bypass
cve-2015-0929
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
time.htm in the web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a78 allows remote attackers to bypass authentication and obtain administrative access by leveraging a cookie received in an HTTP response.
Affected configurations
Node
servisionhvg_video_gateway_firmwareRange≤2.2.26a77
servisionhvg400Match-
| CPE | Name | Operator | Version |
|---|---|---|---|
| servision:hvg_video_gateway_firmware | servision hvg video gateway firmware | le | 2.2.26a77 |
References
Related
prion
prion
Authentication flaw
2015-02-03 22:59:00
Design/Logic Flaw
2015-02-03 22:59:00
cvelist
cvelist
CVE-2015-0929
2015-02-03 22:00:00
CVE-2015-1469
2022-10-03 16:15:51
nvd
nvd
CVE-2015-0929
2015-02-03 22:59:03
CVE-2015-1469
2015-02-03 22:59:05
packetstorm
packetstorm
Servision HVG Hardcoded Credentials
2016-02-11 00:00:00
cert
cert
SerVision HVG Video Gateway web interface contains multiple vulnerabilities
2015-02-02 00:00:00
cve
cve
CVE-2015-1469
2022-10-03 16:15:51
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.2 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
75.2%
Related for CVE-2015-0929