CVE-2018-12675

The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) does not perform origin checks on URLs that the camera's web interface redirects a user to. This can be leveraged to send a user to an unexpected endpoint.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:sv3c:h.264_poe_ip_camera_firmware:v2.3.4.2103-s50-ntd-b20170508b:*:*:*:*:*:*:*
OR cpe:2.3:h:sv3c:sv-d02poe-1080p-l:-:*:*:*:*:*:*:*
cpe:2.3:h:sv3c:sv-b11vpoe-1080p-l:-:*:*:*:*:*:*:*
cpe:2.3:h:sv3c:sv-b01poe-1080p-l:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:sv3c:h.264_poe_ip_camera_firmware:v2.3.4.2103-s50-ntd-b20170823b:*:*:*:*:*:*:*
OR cpe:2.3:h:sv3c:sv-b11vpoe-1080p-l:-:*:*:*:*:*:*:*
cpe:2.3:h:sv3c:sv-d02poe-1080p-l:-:*:*:*:*:*:*:*
cpe:2.3:h:sv3c:sv-b01poe-1080p-l:-:*:*:*:*:*:*:*

Information

Published : 2018-10-19 15:29

Updated : 2019-01-11 09:09


NVD link : CVE-2018-12675

Mitre link : CVE-2018-12675


JSON object : View

CWE
CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

Advertisement

dedicated server usa

Products Affected

sv3c

  • sv-b01poe-1080p-l
  • sv-d02poe-1080p-l
  • h.264_poe_ip_camera_firmware
  • sv-b11vpoe-1080p-l