Lucene search
+L

5 matches found

packetstorm
packetstorm
added 2016/09/27 12:0 a.m.45 views

AVer Information EH6108H+ Authentication Bypass / Inforation Exposure

Vulnerability Note VU667480 AVer Information EH6108H+ hybrid DVR contains multiple vulnerabilities https://www.kb.cert.org/vuls/id/667480 Overview: AVer Information EH6108H+ hybrid DVR, version X9.03.24.00.07l and possibly earlier, reportedly contains multiple vulnerabilities, including...

10CVSS0.0258EPSS
Exploits2
nvd
nvd
added 2016/09/19 1:59 a.m.23 views

CVE-2016-6537

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings...

7.5CVSS7.3AI score0.01258EPSS
Exploits2References2
osv
osv
added 2016/09/19 1:59 a.m.6 views

CVE-2016-6537

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings...

7.5CVSS5.8AI score0.01258EPSS
Exploits2References2
osv
osv
added 2016/09/19 1:59 a.m.7 views

CVE-2016-6536

The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...

9.8CVSS5.8AI score0.0258EPSS
Exploits2References2
prion
prion
added 2016/09/19 1:59 a.m.23 views

Format string

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings...

5CVSS6.6AI score0.01258EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder