CVE-2013-1597: Path Traversal
First published: Fri Jan 24 2020(Updated: )
A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Vivotek Pt7135 Firmware | =0300a | |
| Vivotek Pt7135 Firmware | =0400a | |
| Vivotek PT7135 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/59576
- https://exchange.xforce.ibmcloud.com/vulnerabilities/83947
- https://github.com/offensive-security/exploitdb/blob/master/exploits/hardware/webapps/25139.txt
- https://packetstormsecurity.com/files/cve/CVE-2013-1597
- https://www.coresecurity.com/advisories/vivotek-ip-cameras-multiple-vulnerabilities
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2013-1597.
What is the title of this vulnerability?
The title of this vulnerability is 'A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a'.
What is the severity of CVE-2013-1597?
The severity of CVE-2013-1597 is medium with a CVSS score of 6.5.
How can an attacker exploit this vulnerability?
An attacker can exploit this vulnerability by sending a specially crafted GET request to the affected Vivotek PT7135 IP Cameras 0300a and 0400a.
How can I mitigate the risk of this vulnerability?
To mitigate the risk of this vulnerability, it is recommended to update the firmware of the Vivotek PT7135 IP Cameras to a version that is not vulnerable.
- collector/nvd-index
- vendor/vivotek
- canonical/vivotek pt7135 firmware
- version/vivotek pt7135 firmware/0300a
- version/vivotek pt7135 firmware/0400a
- canonical/vivotek pt7135