Lucene search

[email protected]CVE-2022-34535

HistoryJul 19, 2022 - 8:15 p.m.

CVE-2022-34535

2022-07-1920:15:11

CWE-287

[email protected]

web.nvd.nist.gov

cve-2022-34535

digital watchdog

megapix

ip cameras

security vulnerability

unauthenticated access

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.002 Low

EPSS

Percentile

51.4%

JSON

Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows unauthenticated attackers to view internal paths and scripts via web files.

Affected configurations

NVD

Node

dwmegapix_firmwareMatch4.2.0.32842

AND

dwmegapixMatch-

CPENameOperatorVersion
dw:megapix_firmwaredw megapix firmwareeq4.2.0.32842

CPE	Name	Operator	Version
dw:megapix_firmware	dw megapix firmware	eq	4.2.0.32842

References

gist.github.com/secgrant/820faeeaa0cb4889edaa1d6fef83deab

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.002 Low

EPSS

Percentile

51.4%

JSON

Related for CVE-2022-34535

prion1 nvd1 cvelist1