Skip to main content

Brickstream 2300 2D Firmware

1 CVEs product

Monthly

CVE-2018-3813 CRITICAL POC Act Now

getConfigExportFile.cgi on FLIR Brickstream 2300 devices 2.0 4.1.53.166 has Incorrect Access Control, as demonstrated by reading the AVI_USER_ID and AVI_USER_PASSWORD fields via a direct request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Brickstream 2300 2D Firmware Brickstream 2300 3D Firmware
NVD
CVSS 3.0
9.8
EPSS
1.2%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

getConfigExportFile.cgi on FLIR Brickstream 2300 devices 2.0 4.1.53.166 has Incorrect Access Control, as demonstrated by reading the AVI_USER_ID and AVI_USER_PASSWORD fields via a direct request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Brickstream 2300 2D Firmware Brickstream 2300 3D Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy