CVE-2023-0773 Unauthorized Access Control Vulnerability in Uniview IP Camera

🗓️ 19 Sep 2023 09:33:42Reported by CERT-InType

CVE-2023-0773 Unauthorized Access Control Vulnerability in Uniview IP Camer

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability in the web-based control interface of Uniview’s IP cameras allows a intruder to bypass the authentication process and gain full access to the device.	2 Apr 202400:00	–	bdu_fstec
Circl	CVE-2023-0773	19 Sep 202314:29	–	circl
CNNVD	Uniview IP Camera 授权问题漏洞	15 Mar 202300:00	–	cnnvd
CVE	CVE-2023-0773	19 Sep 202309:33	–	cve
EUVD	EUVD-2023-12790	3 Oct 202520:07	–	euvd
NVD	CVE-2023-0773	19 Sep 202310:15	–	nvd
Prion	Authentication flaw	19 Sep 202310:15	–	prion
Positive Technologies	PT-2023-8872 · Uniview · Uniview Ip Camera	19 Sep 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-0773	23 May 202504:39	–	redhatcve
Vulnrichment	CVE-2023-0773 Unauthorized Access Control Vulnerability in Uniview IP Camera	19 Sep 202309:33	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Uniview IP Camera IPC322LB-SF28-A",
    "vendor": "Uniview",
    "versions": [
      {
        "lessThanOrEqual": "CIPC-B2303.2.8.230105",
        "status": "affected",
        "version": "CIPC-B2303.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1213.6.5.230215",
        "status": "affected",
        "version": "DIPC-B1213.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1216.5.7.230109",
        "status": "affected",
        "version": "DIPC-B1216.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1221.3.5.221202",
        "status": "affected",
        "version": "DIPC-B1221.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1222.3.8.230223",
        "status": "affected",
        "version": "DIPC-B1222.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1225.3.3.221123",
        "status": "affected",
        "version": "DIPC-B1225.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1226.3.6.230105",
        "status": "affected",
        "version": "DIPC-B1226.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1219.2.67.221019",
        "status": "affected",
        "version": "DIPC-B1219.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1223.3.3.221123",
        "status": "affected",
        "version": "DIPC-B1223.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1228.2.65.230207",
        "status": "affected",
        "version": "DIPC-B1228.X.X.XXXXXX",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "DIPC-B1229.1.67.230104",
        "status": "affected",
        "version": "DIPC-B1229.X.X.XXXXXX",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
global	www.global.uniview.com/About_Us/Security/Notice/202309/976482_140493_0.htm
cert-in	www.cert-in.org.in/s2cMainServlet

19 Sep 2023 09:33Current

9.9High risk

Vulners AI Score9.9

CVSS 3.19.1

EPSS0.00722

CWE-287