Sign-up

ID

VAR-201612-0636


TITLE

MileSight camera permission control page unauthorized access vulnerability

Trust: 0.6

sources: CNVD: CNVD-2016-04430

DESCRIPTION

MileSight camera is a network camera produced by Xiamen Pulse Vision Digital Technology Co., Ltd. MileSight camera has an unauthorized access control page vulnerability. An unauthorized attacker could use the vulnerability to execute arbitrary commands.

Trust: 0.6

sources: CNVD: CNVD-2016-04430

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2016-04430

AFFECTED PRODUCTS

vendor:milesightmodel:ms-c2163-f pnascope: - version: -

Trust: 0.6

vendor:milesightmodel:ms-c2163-pnascope: - version: -

Trust: 0.6

vendor:milesightmodel:ms-c3?6?-f pnascope: - version: -

Trust: 0.6

vendor:milesightmodel:ms-c3?6?-pnascope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2016-04430

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2016-04430
value: HIGH

Trust: 0.6

CNVD: CNVD-2016-04430
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2016-04430

EXTERNAL IDS

db:CNVDid:CNVD-2016-04430

Trust: 0.6

sources: CNVD: CNVD-2016-04430

SOURCES

db:CNVDid:CNVD-2016-04430

LAST UPDATE DATE

2022-05-04T10:08:50.381000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2016-04430date:2016-07-01T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2016-04430date:2016-12-31T00:00:00