Lucene search

[email protected]NVD:CVE-2009-2046

HistoryJun 25, 2009 - 1:30 a.m.

CVE-2009-2046

2009-06-2501:30:01

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:C/I:N/A:N

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

46.3%

JSON

The embedded web server on the Cisco Video Surveillance 2500 Series IP Camera with firmware before 2.1 allows remote attackers to read arbitrary files via a (1) http or (2) https request, related to the (a) SD Camera Web Server and the (b) Wireless Camera HTTP Server, aka Bug IDs CSCsu05515 and CSCsr96497.

Affected configurations

Nvd

Node

ciscovideo_surveillance_2500_series_ip_cameraRange≤2.0

VendorProductVersionCPE
ciscovideo_surveillance_2500_series_ip_camera*cpe:2.3:h:cisco:video_surveillance_2500_series_ip_camera:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	video_surveillance_2500_series_ip_camera	*	cpe:2.3:h:cisco:video_surveillance_2500_series_ip_camera::::::::

References

www.cisco.com/en/US/products/products_applied_mitigation_bulletin09186a0080ad1002.html

www.cisco.com/en/US/products/products_security_advisory09186a0080ad0f8f.shtml

www.securityfocus.com/bid/35478

www.securitytracker.com/id?1022445

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:C/I:N/A:N

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

46.3%

JSON

Related for NVD:CVE-2009-2046

cvelist1 cve1 prion1 securityvulns1 cisco1 openvas1