Lucene search

K

Camera Firmware Security Vulnerabilities - CVSS Score 9 - 10

cve
cve

CVE-2017-3184

ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC fail to properly restrict access to the factory reset page. An unauthenticated, remote attacker can exploit this vulnerability by directly accessing the http://x.x.x.x/setup/setup_maintain_firmware-default.h...

9.8CVSS

9.3AI Score

0.01EPSS

2017-12-16 02:29 AM
24
cve
cve

CVE-2017-3185

ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC have a web application that uses the GET method to process requests that contain sensitive information such as user account name and password, which can expose that information through the browser's history,...

9.8CVSS

9.2AI Score

0.006EPSS

2017-12-16 02:29 AM
30
cve
cve

CVE-2017-3186

ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC use non-random default credentials across all devices. A remote attacker can take complete control of a device using default admin credentials.

9.8CVSS

9.4AI Score

0.01EPSS

2017-12-16 02:29 AM
30