ID
VAR-201708-1642
TITLE
Schneider Electric Pelco Sarix/Spectra Cameras Cross-Site Request Forgery Vulnerability
Trust: 0.6
sources:
CNVD: CNVD-2017-23311
DESCRIPTION
PelcoSarix/SpectraCameras is a camera. A cross-site request forgery vulnerability exists in SchneiderElectricPelcoSarix/SpectraCameras. An attacker can exploit a vulnerability user to perform certain operations, and if the logged in user accesses a malicious Web site, this permission can be used to perform certain operations.
Trust: 0.6
sources:
CNVD: CNVD-2017-23311
IOT TAXONOMY
| category: | ['ICS', 'Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2017-23311
AFFECTED PRODUCTS
| vendor: | schneider | model: | electric spectra enhanced model: d6230 2.2.0.5.9340-a0.0 | scope: | eq | version: | - | Trust: 0.6 |
| vendor: | schneider | model: | electric sarix model: id10dn 1.8.2.18-20121109-1.9110-o3.8503 | scope: | eq | version: | - | Trust: 0.6 |
| vendor: | schneider | model: | electric sarix model: d5230 1.9.2.23-20141118-1.9330-a1.10722 | scope: | eq | version: | - | Trust: 0.6 |
| vendor: | schneider | model: | electric sarix enhanced model: ime119 2.1.2.0.8280-a0.0 | scope: | eq | version: | - | Trust: 0.6 |
| vendor: | schneider | model: | electric sarix enhanced model: ime219 2.1.2.0.8280-a0.0 | scope: | eq | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2017-23311
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2017-23311
EXTERNAL IDS
| db: | EXPLOITALERT | id: | 27104 | Trust: 0.6 |
| db: | CNVD | id: | CNVD-2017-23311 | Trust: 0.6 |
sources:
CNVD: CNVD-2017-23311
REFERENCES
| url: | http://www.exploitalert.com/view-details.html?id=27104 | Trust: 0.6 |
sources:
CNVD: CNVD-2017-23311
SOURCES
| db: | CNVD | id: | CNVD-2017-23311 |
LAST UPDATE DATE
2022-05-17T01:46:25.031000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-23311 | date: | 2017-08-28T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2017-23311 | date: | 2017-08-28T00:00:00 |