Lucene search
K

8 matches found

Circl
Circl
added 2018/05/29 3:50 p.m.10 views

CVE-2015-8279

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/samsungsrv1670duploadexec.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:43+00:00|...

8.6CVSS8.5AI score0.51379EPSS
Exploits5References1
Packet Storm
Packet Storm
added 2018/01/11 12:0 a.m.66 views

Samsung SRN-1670D Web Viewer 1.0.0.193 Arbitrary File Read / Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'digest' class MetasploitModule 'Samsung SRN-1670D Web Viewer Version 1.0.0.193 Arbitrary File Read and Upload', 'Description' = %q This module exploits an...

6.5CVSS8.6AI score0.51379EPSS
Exploits7
Metasploit
Metasploit
added 2017/11/12 7:11 p.m.57 views

Samsung SRN-1670D Web Viewer Version 1.0.0.193 Arbitrary File Read and Upload

This module exploits an unrestricted file upload vulnerability in Web Viewer 1.0.0.193 on Samsung SRN-1670D devices. The networksslupload.php file allows remote authenticated attackers to upload and execute arbitrary PHP code via a filename with a .php extension, which is then accessed via a dire...

8.8CVSS8.8AI score0.51379EPSS
Exploits7
Prion
Prion
added 2017/11/06 8:29 a.m.15 views

Unrestricted file upload

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'networksslupload.php' allows remote authenticated attackers to upload and execute arbitrary PHP code via a filename with a .php extension, which is then accessed via a direct request to the...

6.5CVSS8.5AI score0.51379EPSS
Exploits7References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2017/11/06 12:0 a.m.19 views

Samsung SRN-1670D Web Viewer Version 1.0.0.193 Arbitrary File Read and Upload

Samsung NVR Recorder SRN-1670D is a high performance network video recorder. An arbitrary file upload vulnerability was found in the Web Viewer component, which could allow an authenticated user to upload a PHP payload to get code execution. Recent assessments: jvazquez-r7 at September 12, 2019...

8.8CVSS0.8AI score0.51379EPSS
Exploits7References4
NVD
NVD
added 2016/01/15 3:59 a.m.21 views

CVE-2015-8279

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script...

8.6CVSS8.6AI score0.51379EPSS
Exploits5References1
CVE
CVE
added 2016/01/15 2:0 a.m.100 views

CVE-2015-8279

CVE-2015-8279 affects Samsung SRN-1670D Web Viewer 1.0.0.193, enabling remote arbitrary file read via an unspecified PHP script. Connected records link this to credential exposure through cslog_export.php?path=/root/php_modules/lighttpd/sbin/userpw, and to later modules describing chained access ...

8.6CVSS8.4AI score0.51379EPSS
Exploits5References1Affected Software1
CERT
CERT
added 2016/01/12 12:0 a.m.55 views

Samsung SRN-1670D camera contains multiple vulnerabilities

Overview The Samsung SRN-1670D camera contains multiple vulnerabilities. Description CWE-264: Permissions, Privileges, and Access Controls - CVE-2015-8279 An undocumented PHP request may be used to read arbitrary files from the system. CWE-200: Information Exposure - CVE-2015-8280 The interface...

8.6CVSS8AI score0.51379EPSS
Exploits5References1
Rows per page
Query Builder