Lucene search

[email protected]CVE-2013-4982

HistoryDec 27, 2019 - 5:15 p.m.

CVE-2013-4982

2019-12-2717:15:15

CWE-287

[email protected]

web.nvd.nist.gov

126

cve-2013-4982

avtech

avn801 dvr

security bypass

admin login

captcha

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.126 Low

EPSS

Percentile

95.5%

JSON

AVTECH AVN801 DVR has a security bypass via the administration login captcha

Affected configurations

NVD

Node

avtechavn801_dvr_firmwareMatch1017-1003-1009-1003

AND

avtechavn801_dvrMatch-

CPENameOperatorVersion
avtech:avn801_dvr_firmwareavtech avn801 dvr firmwareeq1017-1003-1009-1003

CPE	Name	Operator	Version
avtech:avn801_dvr_firmware	avtech avn801 dvr firmware	eq	1017-1003-1009-1003

References

seclists.org/fulldisclosure/2013/Aug/284

www.securityfocus.com/bid/62035

www.coresecurity.com/advisories/avtech-dvr-multiple-vulnerabilities

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.126 Low

EPSS

Percentile

95.5%

JSON

Related for CVE-2013-4982

cvelist1 prion1 nvd1 securityvulns2 coresecurity1 exploitpack1 openvas2 checkpoint_advisories1 seebug1 packetstorm1 exploitdb1