VAR-200709-0379
Vulnerability from variot - Updated: 2023-12-18 12:12The telnet service in Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) firmware 1.8.1 and earlier, Video Surveillance SP/ISP Decoder Software firmware 1.11.0 and earlier, and the Video Surveillance SP/ISP firmware 1.23.7 and earlier does not require authentication, which allows remote attackers to perform administrative actions, aka CSCsj31729. Attackers can exploit these issues to gain administrative privileges on affected devices.
BETA test the new Secunia Personal Software Inspector!
The Secunia PSI detects installed software on your computer and categorises it as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are available from the vendors.
Download the free PSI BETA from the Secunia website: https://psi.secunia.com/
TITLE: Cisco Video Surveillance IP Gateway and Services Platform Authentication Bypass
SECUNIA ADVISORY ID: SA26721
VERIFY ADVISORY: http://secunia.com/advisories/26721/
CRITICAL: Moderately critical
IMPACT: Security Bypass, System access
WHERE:
From local network
OPERATING SYSTEM: Cisco Video Surveillance IP Gateway Encoder/Decoder 1.x http://secunia.com/product/15611/ Cisco Video Surveillance Services Platform and Integrated Services Platform 1.x http://secunia.com/product/15612/
DESCRIPTION: Some vulnerabilities have been reported in Cisco Video IP Gateway and Services Platform, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
2) The Cisco Video Surveillance Services Platform and Integrated Services Platform devices contain a default password for the "sypixx" and "root" accounts. This can be exploited to gain administrative shell access by connecting to the vulnerable service, but requires knowledge of the default password.
PROVIDED AND/OR DISCOVERED BY: Reported by the vendor.
ORIGINAL ADVISORY: http://www.cisco.com/en/US/products/products_security_advisory09186a00808b4d38.shtml
About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website
{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200709-0379",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "video surveillance sp isp decoder software",
"scope": "lte",
"trust": 1.0,
"vendor": "cisco",
"version": "1.11.0"
},
{
"model": "video surveillance ip gateway encoder decoder",
"scope": "lte",
"trust": 1.0,
"vendor": "cisco",
"version": "1.8.1"
},
{
"model": "video surveillance sp isp",
"scope": "lte",
"trust": 1.0,
"vendor": "cisco",
"version": "1.23.7"
},
{
"model": "video surveillance ip gateway encoder decoder",
"scope": "lte",
"trust": 0.8,
"vendor": "cisco",
"version": "firmware 1.8.1"
},
{
"model": "video surveillance sp isp",
"scope": "lte",
"trust": 0.8,
"vendor": "cisco",
"version": "firmware 1.23.7"
},
{
"model": "video surveillance sp isp decoder software",
"scope": "lte",
"trust": 0.8,
"vendor": "cisco",
"version": "firmware 1.11.0"
},
{
"model": "video surveillance ip gateway encoder decoder",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "1.8.1"
},
{
"model": "video surveillance sp isp",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "1.23.7"
},
{
"model": "video surveillance sp isp decoder software",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "1.11.0"
},
{
"model": "video surveillance sp/isp decoder software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "1.11"
},
{
"model": "video surveillance sp/isp",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "1.23.7"
},
{
"model": "video surveillance ip gateway encoder/decoder",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "1.8.1"
},
{
"model": "video surveillance sp/isp decoder software",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "1.16"
},
{
"model": "video surveillance sp/isp",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "1.26"
},
{
"model": "video surveillance ip gateway encoder/decoder",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "1.9.4"
}
],
"sources": [
{
"db": "BID",
"id": "25549"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:video_surveillance_sp_isp_decoder_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.11.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:video_surveillance_sp_isp:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.23.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:cisco:video_surveillance_ip_gateway_encoder_decoder:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.8.1",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2007-4747"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco Security bulletin",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
],
"trust": 0.6
},
"cve": "CVE-2007-4747",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 10.0,
"confidentialityImpact": "Complete",
"exploitabilityScore": null,
"id": "CVE-2007-4747",
"impactScore": null,
"integrityImpact": "Complete",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "VHN-28109",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2007-4747",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-200709-047",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-28109",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-28109"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The telnet service in Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) firmware 1.8.1 and earlier, Video Surveillance SP/ISP Decoder Software firmware 1.11.0 and earlier, and the Video Surveillance SP/ISP firmware 1.23.7 and earlier does not require authentication, which allows remote attackers to perform administrative actions, aka CSCsj31729. \nAttackers can exploit these issues to gain administrative privileges on affected devices. \n\n----------------------------------------------------------------------\n\nBETA test the new Secunia Personal Software Inspector!\n\nThe Secunia PSI detects installed software on your computer and\ncategorises it as either Insecure, End-of-Life, or Up-To-Date. \nEffectively enabling you to focus your attention on software\ninstallations where more secure versions are available from the\nvendors. \n\nDownload the free PSI BETA from the Secunia website:\nhttps://psi.secunia.com/\n\n----------------------------------------------------------------------\n\nTITLE:\nCisco Video Surveillance IP Gateway and Services Platform\nAuthentication Bypass\n\nSECUNIA ADVISORY ID:\nSA26721\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/26721/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nSecurity Bypass, System access\n\nWHERE:\n\u003eFrom local network\n\nOPERATING SYSTEM:\nCisco Video Surveillance IP Gateway Encoder/Decoder 1.x\nhttp://secunia.com/product/15611/\nCisco Video Surveillance Services Platform and Integrated Services\nPlatform 1.x\nhttp://secunia.com/product/15612/\n\nDESCRIPTION:\nSome vulnerabilities have been reported in Cisco Video IP Gateway and\nServices Platform, which can be exploited by malicious people to\nbypass certain security restrictions and compromise a vulnerable\nsystem. \n\n2) The Cisco Video Surveillance Services Platform and Integrated\nServices Platform devices contain a default password for the \"sypixx\"\nand \"root\" accounts. This can be exploited to gain administrative\nshell access by connecting to the vulnerable service, but requires\nknowledge of the default password. \n\nPROVIDED AND/OR DISCOVERED BY:\nReported by the vendor. \n\nORIGINAL ADVISORY:\nhttp://www.cisco.com/en/US/products/products_security_advisory09186a00808b4d38.shtml\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"db": "BID",
"id": "25549"
},
{
"db": "VULHUB",
"id": "VHN-28109"
},
{
"db": "PACKETSTORM",
"id": "59134"
}
],
"trust": 2.07
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2007-4747",
"trust": 2.8
},
{
"db": "BID",
"id": "25549",
"trust": 2.0
},
{
"db": "SECUNIA",
"id": "26721",
"trust": 1.8
},
{
"db": "VUPEN",
"id": "ADV-2007-3061",
"trust": 1.7
},
{
"db": "OSVDB",
"id": "37503",
"trust": 1.7
},
{
"db": "SECTRACK",
"id": "1018655",
"trust": 1.7
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601",
"trust": 0.8
},
{
"db": "CISCO",
"id": "20070905 CISCO VIDEO SURVEILLANCE IP GATEWAY AND SERVICES PLATFORM AUTHENTICATION VULNERABILITIES",
"trust": 0.6
},
{
"db": "XF",
"id": "36449",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-200709-047",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-28109",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "59134",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-28109"
},
{
"db": "BID",
"id": "25549"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"db": "PACKETSTORM",
"id": "59134"
},
{
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
]
},
"id": "VAR-200709-0379",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-28109"
}
],
"trust": 0.01
},
"last_update_date": "2023-12-18T12:12:25.566000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20070905-video",
"trust": 0.8,
"url": "http://www.cisco.com/en/us/products/csa/cisco-sa-20070905-video.html"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-287",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-28109"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"db": "NVD",
"id": "CVE-2007-4747"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.8,
"url": "http://www.cisco.com/en/us/products/products_security_advisory09186a00808b4d38.shtml"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/25549"
},
{
"trust": 1.7,
"url": "http://osvdb.org/37503"
},
{
"trust": 1.7,
"url": "http://www.securitytracker.com/id?1018655"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/26721"
},
{
"trust": 1.1,
"url": "http://www.vupen.com/english/advisories/2007/3061"
},
{
"trust": 1.1,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36449"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-4747"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-4747"
},
{
"trust": 0.6,
"url": "http://xforce.iss.net/xforce/xfdb/36449"
},
{
"trust": 0.6,
"url": "http://www.frsirt.com/english/advisories/2007/3061"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
},
{
"trust": 0.3,
"url": "/archive/1/478617"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/warp/public/707/cisco-sa-20070905-video.shtml"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/en/us/products/ps6936/index.html"
},
{
"trust": 0.1,
"url": "http://secunia.com/secunia_security_advisories/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/26721/"
},
{
"trust": 0.1,
"url": "https://psi.secunia.com/"
},
{
"trust": 0.1,
"url": "http://secunia.com/product/15612/"
},
{
"trust": 0.1,
"url": "http://secunia.com/product/15611/"
},
{
"trust": 0.1,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.1,
"url": "http://secunia.com/about_secunia_advisories/"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-28109"
},
{
"db": "BID",
"id": "25549"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"db": "PACKETSTORM",
"id": "59134"
},
{
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-28109"
},
{
"db": "BID",
"id": "25549"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"db": "PACKETSTORM",
"id": "59134"
},
{
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2007-09-06T00:00:00",
"db": "VULHUB",
"id": "VHN-28109"
},
{
"date": "2007-09-05T00:00:00",
"db": "BID",
"id": "25549"
},
{
"date": "2012-06-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"date": "2007-09-07T06:01:27",
"db": "PACKETSTORM",
"id": "59134"
},
{
"date": "2007-09-06T22:17:00",
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"date": "2007-09-06T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-07-29T00:00:00",
"db": "VULHUB",
"id": "VHN-28109"
},
{
"date": "2016-07-05T22:00:00",
"db": "BID",
"id": "25549"
},
{
"date": "2012-06-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-002601"
},
{
"date": "2017-07-29T01:33:09.647000",
"db": "NVD",
"id": "CVE-2007-4747"
},
{
"date": "2007-09-10T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) Vulnerability to perform administrator operations in firmware etc.",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2007-002601"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "authorization issue",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200709-047"
}
],
"trust": 0.6
}
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.