CVE-2012-3002
Severity CVSS v4.0:
Pending analysis
Type:
CWE-287
Authentication Issues
Publication date:
21/12/2012
Last modified:
11/04/2025
Description
The web interface on (1) Foscam and (2) Wansview IP cameras allows remote attackers to bypass authentication, and perform administrative functions or read the admin password, via a direct request to an unspecified URL.
Impact
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:h:foscam:h.264_hi3510\/11\/12_ip_camera:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:wansview:h.264_hi3510\/11\/12_ip_camera:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://foscam.us/forum/h264-ip-camera-web-interface-authentication-bypass-test-tool-t3252.html
- http://secunia.com/advisories/50950
- http://secunia.com/advisories/50966
- http://www.foscam.com/help.aspx?TypeId=11
- http://www.kb.cert.org/vuls/id/265532
- http://www.securityfocus.com/bid/55873
- http://foscam.us/forum/h264-ip-camera-web-interface-authentication-bypass-test-tool-t3252.html
- http://secunia.com/advisories/50950
- http://secunia.com/advisories/50966
- http://www.foscam.com/help.aspx?TypeId=11
- http://www.kb.cert.org/vuls/id/265532
- http://www.securityfocus.com/bid/55873