24 matches found
EUVD-2020-4024
Malware in sbrugna...
EUVD-2020-4022
Malware in sbrugna...
EUVD-2020-4021
Malware in sbrugna...
Castel NextGen DVR Security Bypass Vulnerability
Castel NextGen DVR is a network video device. A security vulnerability exists in Castel NextGen DVR. The vulnerability stems from the program failing to check if a request comes from an administrator. An attacker can exploit the vulnerability to create/modify file libraries, create/modify users,...
Castel NextGen DVR Cross-Site Request Forgery Vulnerability
Castel NextGen DVR is a network video device. A cross-site request forgery vulnerability exists in Castel NextGen DVR v1.0.0. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user. An attacker could use this vulnerability to...
Castel NextGen DVR Management Feature Elevation of Privilege Vulnerability
Castel NextGen DVR is a network video device. A security vulnerability exists in the Castel NextGen DVR management feature that allows a remote attacker can exploit the vulnerability to submit a special request that can elevate privileges and gain administrator privileges...
Castel NextGen DVR Administrator Creation Vulnerability
Castel NextGen DVR is a network video device. A security vulnerability exists in Castel NextGen DVR that allows remote attackers to exploit the vulnerability by submitting a special request that could create an administrator user or obtain SMTP authentication credentials...
Castel NextGen DVR 1.0.0 Bypass / CSRF / Disclosure
All issues are associated with Castel NextGen DVR v1.0.0 and have been resolved in v1.0.1. ------------------------------- CVE-2020-11679 Original Disclosure https://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypass Description A low privileged user can call functionality...
CVE-2020-11682
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request...
Cross site request forgery (csrf)
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request...
CVE-2020-11680
Castel NextGen DVR v1.0.0 is vulnerable to authorization bypass on all administrator functionality. The application fails to check that a request was submitted by an administrator. Consequently, a normal user can perform actions including, but not limited to, creating/modifying the file store,...
CVE-2020-11681
Castel NextGen DVR v1.0.0 stores and displays credentials for the associated SMTP server in cleartext. Low privileged users can exploit this to create an administrator user and obtain the SMTP credentials...
CVE-2020-11679
Castel NextGen DVR v1.0.0 is vulnerable to privilege escalation through the Adminstrator/Users/Edit/:UserId functionality. Adminstrator/Users/Edit/:UserId fails to check that the request was submitted by an Administrator. This allows a normal user to escalate their privileges by adding additional...
CVE-2020-11679
Castel NextGen DVR v1.0.0 is vulnerable to privilege escalation through the Adminstrator/Users/Edit/:UserId functionality. Adminstrator/Users/Edit/:UserId fails to check that the request was submitted by an Administrator. This allows a normal user to escalate their privileges by adding additional...
CVE-2020-11680
Castel NextGen DVR v1.0.0 is vulnerable to authorization bypass on all administrator functionality. The application fails to check that a request was submitted by an administrator. Consequently, a normal user can perform actions including, but not limited to, creating/modifying the file store,...
Authorization
Castel NextGen DVR v1.0.0 is vulnerable to authorization bypass on all administrator functionality. The application fails to check that a request was submitted by an administrator. Consequently, a normal user can perform actions including, but not limited to, creating/modifying the file store,...
Default credentials
Castel NextGen DVR v1.0.0 stores and displays credentials for the associated SMTP server in cleartext. Low privileged users can exploit this to create an administrator user and obtain the SMTP credentials...
CVE-2020-11682
Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing request. A RequestVerificationToken is set by the web interface, and included in requests sent by web interface. However, this token is not verified by the application: the token can be removed from all requests and the request...
CVE-2020-11682
Summary: Castel NextGen DVR v1.0.0 is vulnerable to CSRF in all state-changing requests because a __RequestVerificationToken set by the web interface is not verified by the application, allowing removal of the token and successful requests. Affected component: Castel NextGen DVR web interface (v1...
CVE-2020-11681
Castel NextGen DVR v1.0.0 stores and displays credentials for the SMTP server in cleartext. This enables a low-privileged user to create an administrator account and obtain SMTP credentials. The root cause, per the CVE details, is cleartext credential handling. Some sources note the issue was add...