Security Advisory

CVE-2018-12666

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-10-19 22:00:00

Last updated 2024-08-05 08:38:06

Assigner mitre

State PUBLISHED

Description

SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B devices improperly identifies users only by the authentication level sent in the cookies, which allow remote attackers to bypass authentication and gain administrator access by setting the authLevel cookie to 255.

← Browse all CVEs View on cve.org ↗