CVE-2013-3539: CSRF
First published: Tue Oct 01 2013(Updated: )
Cross-site request forgery (CSRF) vulnerability in the command/user.cgi in Sony SNC CH140, SNC CH180, SNC CH240, SNC CH280, SNC DH140, SNC DH140T, SNC DH180, SNC DH240, SNC DH240T, SNC DH280, and possibly other camera models allows remote attackers to hijack the authentication of administrators for requests that add users.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ovislink Airlive Wl2600cam | ||
| Sony SNC CH140 | ||
| Sony Snc Ch180 | ||
| Sony Snc Ch240 | ||
| Sony Snc Ch280 | ||
| Sony Snc Dh140 | ||
| Sony Snc Dh140t | ||
| Sony Snc Dh180 | ||
| Sony Snc Dh240 | ||
| Sony Snc Dh240t | ||
| Sony Snc Dh280 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/tags
- agent/type
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/ovislink
- canonical/ovislink airlive wl2600cam
- vendor/sony
- canonical/sony snc ch140
- canonical/sony snc ch180
- canonical/sony snc ch240
- canonical/sony snc ch280
- canonical/sony snc dh140
- canonical/sony snc dh140t
- canonical/sony snc dh180
- canonical/sony snc dh240
- canonical/sony snc dh240t
- canonical/sony snc dh280