CVE-2013-7204

Cross-site request forgery (CSRF) vulnerability in set_users.cgi in Conceptronic CIPCAMPTIWL Camera 1.0 with firmware 21.37.2.49 allows…

mitre·CWE-352·Published 2014-01-17

CVSS

—

EPSS

0.11

KEV

Exploits

cve.orgen

238 chars

Cross-site request forgery (CSRF) vulnerability in set_users.cgi in Conceptronic CIPCAMPTIWL Camera 1.0 with firmware 21.37.2.49 allows remote attackers to hijack the authentication of administrators for requests that add arbitrary users.

NVDen

238 chars

NVDes

260 chars

Vulnerabilidad cross-site request forgery (CSRF) en set_users.cgi de Conceptronic CIPCAMPTIWL Camera 1.0 con firmware 21.37.2.49 permite a atacantes remotos secuestrar la autenticación de administradores para peticiones que añaden usuarios de forma arbitraria.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P