Sign-up

ID

VAR-201308-0006


CVE

CVE-2012-3913


TITLE

Cisco VC220 and VC240 Service disruption in cameras (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2013-003629

DESCRIPTION

The Cisco VC220 and VC240 cameras allow remote attackers to cause a denial of service (WebUI outage) via crafted packets, aka Bug IDs CSCtf73188, CSCtf88059, CSCtf87951, CSCtf87908, and CSCtf88019. Cisco VC220 and VC240 Camera has a service disruption (WebUI Stop ) There are vulnerabilities that are put into a state. Vendors have confirmed this vulnerability Bug ID CSCtf73188 , CSCtf88059 , CSCtf87951 , CSCtf87908 ,and CSCtf88019 It is released as.Denial of service operation via a packet crafted by a third party (WebUI Stop ) There is a possibility of being put into a state. The Cisco VC220 and VC240 devices are network cameras. After successful use, an unauthenticated remote attacker can send a specially-made packet to the affected device, causing the affected device to reload, preventing the WebUI from accessing the camera, and denying the legitimate user. These issues are being tracked by Cisco Bug IDs CSCtf73188, CSCtf88059, CSCtf87951, CSCtf87908, and CSCtf88019. A remote attacker can exploit this vulnerability to cause a denial of service (WebUI interruption)

Trust: 3.06

sources: NVD: CVE-2012-3913 // JVNDB: JVNDB-2013-003629 // CNVD: CNVD-2013-11491 // CNVD: CNVD-2013-11545 // BID: 61555 // VULHUB: VHN-57194

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 1.2

sources: CNVD: CNVD-2013-11491 // CNVD: CNVD-2013-11545

AFFECTED PRODUCTS

vendor:ciscomodel:video surveillance vc220 network dome camerascope:eqversion: -

Trust: 1.6

vendor:ciscomodel:vc240 network bullet camerascope:eqversion: -

Trust: 1.6

vendor:ciscomodel:vc220 dome network camerascope:lteversion:1.1

Trust: 0.8

vendor:ciscomodel:vc240 bullet network camerascope:lteversion:1.2

Trust: 0.8

vendor:ciscomodel:small business vc220 network dome camerascope: - version: -

Trust: 0.6

vendor:ciscomodel:network cameras vc240scope: - version: -

Trust: 0.6

vendor:ciscomodel:network cameras vc220scope: - version: -

Trust: 0.6

vendor:ciscomodel:small business vc240 network camerascope:eqversion:1.0.1.2

Trust: 0.3

vendor:ciscomodel:small business vc240 network camerascope:eqversion:1.0.0.13

Trust: 0.3

vendor:ciscomodel:small business vc220 dome network camerascope:eqversion:1.0.1.1

Trust: 0.3

sources: CNVD: CNVD-2013-11491 // CNVD: CNVD-2013-11545 // BID: 61555 // JVNDB: JVNDB-2013-003629 // CNNVD: CNNVD-201308-001 // NVD: CVE-2012-3913

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2012-3913
value: MEDIUM

Trust: 1.0

NVD: CVE-2012-3913
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2013-11491
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2013-11545
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201308-001
value: MEDIUM

Trust: 0.6

VULHUB: VHN-57194
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2012-3913
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2013-11491
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

CNVD: CNVD-2013-11545
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-57194
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2013-11491 // CNVD: CNVD-2013-11545 // VULHUB: VHN-57194 // JVNDB: JVNDB-2013-003629 // CNNVD: CNNVD-201308-001 // NVD: CVE-2012-3913

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2012-3913

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201308-001

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201308-001

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-003629

PATCH
title:Cisco VC220/240 Network Cameras Denial of Service Vulnerabilitiesurl:http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-3913
Trust: 0.8
title:26623url:http://tools.cisco.com/security/center/viewAlert.x?alertId=26623
Trust: 0.8
title:Patch for Cisco VC220/240 Network Cameras Denial of Service Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/38007
Trust: 0.6
title:Cisco VC220/VC240 Network Cameras has multiple patches for denial of service vulnerabilitiesurl:https://www.cnvd.org.cn/patchInfo/show/38018
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2013-11491 // 
            
            
            
            CNVD: CNVD-2013-11545 // 
            
            
            
            JVNDB: JVNDB-2013-003629

EXTERNAL IDS
db:NVDid:CVE-2012-3913
Trust: 4.0
db:BIDid:61555
Trust: 1.0
db:JVNDBid:JVNDB-2013-003629
Trust: 0.8
db:CNNVDid:CNNVD-201308-001
Trust: 0.7
db:CNVDid:CNVD-2013-11491
Trust: 0.6
db:CNVDid:CNVD-2013-11545
Trust: 0.6
db:CISCOid:20130731 CISCO VC220/240 NETWORK CAMERAS DENIAL OF SERVICE VULNERABILITIES
Trust: 0.6
db:VULHUBid:VHN-57194
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2013-11491 // 
            
            
            
            CNVD: CNVD-2013-11545 // 
            
            
            
            VULHUB: VHN-57194 // 
            
            
            
            BID: 61555 // 
            
            
            
            JVNDB: JVNDB-2013-003629 // 
            
            
            
            CNNVD: CNNVD-201308-001 // 
            
            
            
            NVD: CVE-2012-3913

REFERENCES
url:http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2012-3913
Trust: 3.2
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-3913
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-3913
Trust: 0.8
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=csctf73188
Trust: 0.6
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=csctf88059
Trust: 0.6
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=csctf87951
Trust: 0.6
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=csctf87908
Trust: 0.6
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=csctf88019
Trust: 0.6
url:http://www.cisco.com/
Trust: 0.3
url:http://tools.cisco.com/security/center/viewalert.x?alertid=26623
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2013-11491 // 
            
            
            
            CNVD: CNVD-2013-11545 // 
            
            
            
            VULHUB: VHN-57194 // 
            
            
            
            BID: 61555 // 
            
            
            
            JVNDB: JVNDB-2013-003629 // 
            
            
            
            CNNVD: CNNVD-201308-001 // 
            
            
            
            NVD: CVE-2012-3913

CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
            
            
            BID: 61555

SOURCES
db:CNVDid:CNVD-2013-11491
db:CNVDid:CNVD-2013-11545
db:VULHUBid:VHN-57194
db:BIDid:61555
db:JVNDBid:JVNDB-2013-003629
db:CNNVDid:CNNVD-201308-001
db:NVDid:CVE-2012-3913

LAST UPDATE DATE
2025-04-11T22:48:43.155000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2013-11491date:2013-08-05T00:00:00
db:CNVDid:CNVD-2013-11545date:2013-08-06T00:00:00
db:VULHUBid:VHN-57194date:2013-08-01T00:00:00
db:BIDid:61555date:2013-07-31T00:00:00
db:JVNDBid:JVNDB-2013-003629date:2013-08-05T00:00:00
db:CNNVDid:CNNVD-201308-001date:2013-08-22T00:00:00
db:NVDid:CVE-2012-3913date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:CNVDid:CNVD-2013-11491date:2013-08-05T00:00:00
db:CNVDid:CNVD-2013-11545date:2013-08-06T00:00:00
db:VULHUBid:VHN-57194date:2013-08-01T00:00:00
db:BIDid:61555date:2013-07-31T00:00:00
db:JVNDBid:JVNDB-2013-003629date:2013-08-05T00:00:00
db:CNNVDid:CNNVD-201308-001date:2013-08-22T00:00:00
db:NVDid:CVE-2012-3913date:2013-08-01T13:32:30.360