Cross-site request forgery (CSRF) vulnerability in cgi-bin/users.cgi in Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.1.0.8 and earlier, allows remote attackers to hijack the authentication of administrators for requests that add users.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 01:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/fulldisclosure/2013/Jun/84 - |
Information
Published : 2013-10-01 19:55
Updated : 2024-11-21 01:54
NVD link : CVE-2013-3690
Mitre link : CVE-2013-3690
CVE.ORG link : CVE-2013-3690
JSON object : View
Products Affected
brickom
- osd-040e
- md-100ap
- fb-100ap
- 100ap_device_firmware
- wfb-100ap
- ob-100ae
- wcb-100ap
CWE
CWE-352
Cross-Site Request Forgery (CSRF)