CVE-2016-6536

The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value.
References
Link Resource
http://www.kb.cert.org/vuls/id/667480 Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/92936
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:aver:eh6108h\+_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:aver:eh6108h\+:-:*:*:*:*:*:*:*

Information

Published : 2016-09-18 18:59

Updated : 2016-11-28 12:33


NVD link : CVE-2016-6536

Mitre link : CVE-2016-6536


JSON object : View

CWE
CWE-264

Permissions, Privileges, and Access Controls

Advertisement

dedicated server usa

Products Affected

aver

  • eh6108h\+
  • eh6108h\+_firmware