CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
96.9%
‘/cgi-bin/admin/downloadMedias.cgi’ of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera’s Linux filesystem via a crafted HTTP request containing “…” sequences. This vulnerability is already verified on VIVOTEK Network Camera IB8369/FD8164/FD816BA; most others have similar firmware that may be affected.
Vendor | Product | Version | CPE |
---|---|---|---|
vivotek | network_camera_ib8369_firmware | ib8369-vvtk-0102a | cpe:2.3:o:vivotek:network_camera_ib8369_firmware:ib8369-vvtk-0102a:*:*:*:*:*:*:* |
vivotek | network_camera_ib8369 | - | cpe:2.3:h:vivotek:network_camera_ib8369:-:*:*:*:*:*:*:* |
vivotek | network_camera_fd8164_firmware | fd8164-_vvtk-0200b | cpe:2.3:o:vivotek:network_camera_fd8164_firmware:fd8164-_vvtk-0200b:*:*:*:*:*:*:* |
vivotek | network_camera_fd8164 | - | cpe:2.3:h:vivotek:network_camera_fd8164:-:*:*:*:*:*:*:* |
vivotek | network_camera_fd816ba_firmware | fd816ba-vvtk-010101. | cpe:2.3:o:vivotek:network_camera_fd816ba_firmware:fd816ba-vvtk-010101.:*:*:*:*:*:*:* |
vivotek | network_camera_fd816ba | - | cpe:2.3:h:vivotek:network_camera_fd816ba:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
96.9%