← Volver a CVEs
CVE-2013-3690
N/ADescripcion
Cross-site request forgery (CSRF) vulnerability in cgi-bin/users.cgi in Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.1.0.8 and earlier, allows remote attackers to hijack the authentication of administrators for requests that add users.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado10/1/2013
Ultima modificacion4/29/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
brickcom:100ap_device_firmwarebrickcom:fb-100apbrickcom:md-100apbrickcom:ob-100aebrickcom:osd-040ebrickcom:wcb-100apbrickcom:wfb-100ap
Debilidades (CWE)
CWE-352
Referencias
http://seclists.org/fulldisclosure/2013/Jun/84(cve@mitre.org)
http://seclists.org/fulldisclosure/2013/Jun/84(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.