admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2024/3xxx/CVE-2024-3160.json
CVE Team b83dc63760
"-Synchronized-Data."
2024-04-02 15:28:38 +00:00

165 lines
6.9 KiB
JSON
Raw Blame History

{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ID": "CVE-2024-3160",
"ASSIGNER": "cna@vuldb.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** DISPUTED ** ** DISPUTED ** A vulnerability, which was classified as problematic, was found in Intelbras MHDX 1004, MHDX 1008, MHDX 1016, MHDX 5016, HDCVI 1008 and HDCVI 1016 up to 20240401. This affects an unknown part of the file /cap.js of the component HTTP GET Request Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The identifier VDB-258933 was assigned to this vulnerability. NOTE: The vendor explains that they do not classify the information shown as sensitive and therefore there is no vulnerability which is about to harm the user."
},
{
"lang": "deu",
"value": "** DISPUTED ** Es wurde eine problematische Schwachstelle in Intelbras MHDX 1004, MHDX 1008, MHDX 1016, MHDX 5016, HDCVI 1008 and HDCVI 1016 bis 20240401 gefunden. Dabei betrifft es einen unbekannter Codeteil der Datei /cap.js der Komponente HTTP GET Request Handler. Durch Manipulation mit unbekannten Daten kann eine information disclosure-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs kann dabei \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung. Die wahre Existenz der vermeintlichen Schwachstelle wird zur Zeit in Frage gestellt."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-200 Information Disclosure",
"cweId": "CWE-200"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Intelbras",
"product": {
"product_data": [
{
"product_name": "MHDX 1004",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "20240401"
}
]
}
},
{
"product_name": "MHDX 1008",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "20240401"
}
]
}
},
{
"product_name": "MHDX 1016",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "20240401"
}
]
}
},
{
"product_name": "MHDX 5016",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "20240401"
}
]
}
},
{
"product_name": "HDCVI 1008",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "20240401"
}
]
}
},
{
"product_name": "HDCVI 1016",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "20240401"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://vuldb.com/?id.258933",
"refsource": "MISC",
"name": "https://vuldb.com/?id.258933"
},
{
"url": "https://vuldb.com/?ctiid.258933",
"refsource": "MISC",
"name": "https://vuldb.com/?ctiid.258933"
},
{
"url": "https://vuldb.com/?submit.305410",
"refsource": "MISC",
"name": "https://vuldb.com/?submit.305410"
},
{
"url": "https://github.com/netsecfish/intelbras_cap_js",
"refsource": "MISC",
"name": "https://github.com/netsecfish/intelbras_cap_js"
}
]
},
"credits": [
{
"lang": "en",
"value": "netsecfish (VulDB User)"
}
],
"impact": {
"cvss": [
{
"version": "3.1",
"baseScore": 5.3,
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"baseSeverity": "MEDIUM"
},
{
"version": "3.0",
"baseScore": 5.3,
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"baseSeverity": "MEDIUM"
},
{
"version": "2.0",
"baseScore": 5,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink