critical
10
CWE
798
Advisory Published
Updated

CVE-2013-3542

First published: Wed Dec 11 2019(Updated: )

Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other camera models with firmware 1.0.4.11, have a hardcoded account "!#/" with the same password, which makes it easier for remote attackers to obtain access via a TELNET session.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Grandstream Gxv3501 Firmware=1.0.4.11
Grandstream GXV3501
Grandstream Gxv3504 Firmware=1.0.4.11
Grandstream Gxv3504
Grandstream Gxv3601 Firmware=1.0.4.11
Grandstream Gxv3601
Grandstream Gxv3601hd Firmware=1.0.4.11
Grandstream Gxv3601hd
Grandstream Gxv3601ll Firmware=1.0.4.11
Grandstream Gxv3601ll
Grandstream Gxv3611hd Firmware=1.0.4.11
Grandstream Gxv3611hd
Grandstream Gxv3611ll Firmware=1.0.4.11
Grandstream Gxv3611ll
Grandstream Gxv3615w Firmware=1.0.4.11
Grandstream Gxv3615w
Grandstream Gxv3615p Firmware=1.0.4.11
Grandstream Gxv3615p
Grandstream Gxv3651fhd Firmware=1.0.4.11
Grandstream Gxv3651fhd
Grandstream Gxv3662hd Firmware=1.0.4.11
Grandstream Gxv3662hd
Grandstream Gxv3615wp Hd Firmware=1.0.4.11
Grandstream Gxv3615wp Hd
Grandstream Gxv3500 Firmware=1.0.4.11
Grandstream Gxv3500

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2013-3542?

    CVE-2013-3542 is a vulnerability found in Grandstream camera models with firmware 1.0.4.11 and allows remote attackers to obtain access.

  • Which camera models are affected by CVE-2013-3542?

    Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other models with firmware 1.0.4.11.

  • What is the severity of CVE-2013-3542?

    CVE-2013-3542 has a severity rating of 10, which is considered critical.

  • How can I fix CVE-2013-3542?

    To fix CVE-2013-3542, update the firmware of the affected Grandstream camera models to a version higher than 1.0.4.11.

  • Where can I find more information about CVE-2013-3542?

    You can find more information about CVE-2013-3542 at the following sources: [1] http://seclists.org/fulldisclosure/2013/Jun/84 [2] https://www.youtube.com/watch?v=XkCBs4lenhI

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203