CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
75.2%
The following SIEMENS branded IP Camera Models CCMW3025, CVMW3025-IR, CFMW3025 prior to version 1.41_SP18_S1; CCPW3025, CCPW5025 prior to version 0.1.73_S1; CCMD3025-DN18 prior to version v1.394_S1; CCID1445-DN18, CCID1445-DN28, CCID1145-DN36, CFIS1425, CCIS1425, CFMS2025, CCMS2025, CVMS2025-IR, CFMW1025, CCMW1025 prior to version v2635_SP1 could allow an attacker with network access to the web server to obtain administrative credentials under certain circumstances.
Vendor | Product | Version | CPE |
---|---|---|---|
siemens | ccid1445-dn18_firmware | - | cpe:2.3:o:siemens:ccid1445-dn18_firmware:-:*:*:*:*:*:*:* |
siemens | ccid1445-dn28_firmware | - | cpe:2.3:o:siemens:ccid1445-dn28_firmware:-:*:*:*:*:*:*:* |
siemens | ccid1445-dn36_firmware | - | cpe:2.3:o:siemens:ccid1445-dn36_firmware:-:*:*:*:*:*:*:* |
siemens | ccis1425_firmware | - | cpe:2.3:o:siemens:ccis1425_firmware:-:*:*:*:*:*:*:* |
siemens | ccmd3025-dn18_firmware | - | cpe:2.3:o:siemens:ccmd3025-dn18_firmware:-:*:*:*:*:*:*:* |
siemens | ccms2025_firmware | - | cpe:2.3:o:siemens:ccms2025_firmware:-:*:*:*:*:*:*:* |
siemens | ccmw1025_firmware | - | cpe:2.3:o:siemens:ccmw1025_firmware:-:*:*:*:*:*:*:* |
siemens | ccmw3025_firmware | - | cpe:2.3:o:siemens:ccmw3025_firmware:-:*:*:*:*:*:*:* |
siemens | ccpw3025_firmware | - | cpe:2.3:o:siemens:ccpw3025_firmware:-:*:*:*:*:*:*:* |
siemens | cfis1425_firmware | - | cpe:2.3:o:siemens:cfis1425_firmware:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
75.2%