← Back to CVEs
CVE-2013-3690
N/ADescription
Cross-site request forgery (CSRF) vulnerability in cgi-bin/users.cgi in Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.1.0.8 and earlier, allows remote attackers to hijack the authentication of administrators for requests that add users.
CVE Details
CVSS v3.1 ScoreN/A
Published10/1/2013
Last Modified4/29/2026
Sourcenvd
Honeypot Sightings0
Affected Products
brickcom:100ap_device_firmwarebrickcom:fb-100apbrickcom:md-100apbrickcom:ob-100aebrickcom:osd-040ebrickcom:wcb-100apbrickcom:wfb-100ap
Weaknesses (CWE)
CWE-352
References
http://seclists.org/fulldisclosure/2013/Jun/84(cve@mitre.org)
http://seclists.org/fulldisclosure/2013/Jun/84(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.