Skip to main content

Srn 1670D Firmware

1 CVEs product

Monthly

CVE-2017-14262 HIGH Act Now

On Samsung NVR devices, remote attackers can read the MD5 password hash of the 'admin' account via certain szUserName JSON data to cgi-bin/main-cgi, and login to the device with that hash in the. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Epss exploitation probability 21.0% and no vendor patch available.

Samsung Information Disclosure Srn 1670D Firmware Srn 1000 Firmware Srn 472S Firmware +1
NVD GitHub
CVSS 3.0
8.1
EPSS
21.0%
EPSS 21% CVSS 8.1
HIGH Act Now

On Samsung NVR devices, remote attackers can read the MD5 password hash of the 'admin' account via certain szUserName JSON data to cgi-bin/main-cgi, and login to the device with that hash in the. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Epss exploitation probability 21.0% and no vendor patch available.

Samsung Information Disclosure Srn 1670D Firmware +3
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy