CVE-2018-7781
First published: Tue Jul 03 2018(Updated: )
In Schneider Electric Pelco Sarix Professional 1st generation cameras with firmware versions prior to 3.29.69, by sending a specially crafted request an authenticated user can view password in clear text and results in privilege escalation.
Credit: cybersecurity@se.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Schneider-electric Imps110-1e | <3.29.69 | |
| Schneider-electric Imps110-1 Firmware | ||
| Schneider-electric Imps110-1e | <3.29.69 | |
| Schneider-electric Imps110-1e Firmware | ||
| Schneider Electric IMPS110-1ER | <3.29.69 | |
| Schneider-electric Imps110-1er Firmware | ||
| Schneider-electric Ibps110-1er Firmware | <3.29.69 | |
| Schneider-electric Ibps110-1er Firmware | ||
| Schneider Electric IMP1110-1E | <3.29.69 | |
| Schneider Electric IMP1110-1 | ||
| Schneider Electric IMP1110-1E | <3.29.69 | |
| Schneider Electric IMP1110-1E | ||
| Schneider Electric IMP1110-1 | <3.29.69 | |
| Schneider Electric IMP1110-1 | ||
| Schneider Electric IBP1110-1ER | <3.29.69 | |
| Schneider-electric Ibp1110-1er Firmware | ||
| Schneider-electric Imp219-1 Firmware | <3.29.69 | |
| Schneider-electric Imp219-1e Firmware | ||
| Schneider-electric Imp219-1e | <3.29.69 | |
| Schneider-electric Imp219-1e Firmware | ||
| Schneider-electric Imp219-1er Firmware | <3.29.69 | |
| Schneider-electric Imp219-1 | ||
| Schneider-electric Ibp219-1er | <3.29.69 | |
| Schneider-electric Ibp219-1er Firmware | ||
| Schneider Electric Imp319-1er | <3.29.69 | |
| Schneider-electric Imp319-1 Firmware | ||
| Schneider-electric Imp319-1e Firmware | <3.29.69 | |
| Schneider-electric Imp319-1e Firmware | ||
| Schneider Electric Imp319-1er | <3.29.69 | |
| Schneider Electric Imp319-1er | ||
| Schneider-electric IBP319-1ER | <3.29.69 | |
| Schneider-electric IBP319-1ER | ||
| Schneider Electric IMP519-1 | <3.29.69 | |
| Schneider-electric Imp519-1 Firmware | ||
| Schneider-electric Imp519-1e Firmware | <3.29.69 | |
| Schneider-electric Imp519-1e Firmware | ||
| Schneider-electric Imp519-1er Firmware | <3.29.69 | |
| Schneider-electric Imp519-1er Firmware | ||
| Schneider Electric IBP519-1ER | <3.29.69 | |
| Schneider Electric IBP519-1ER |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2018-7781?
CVE-2018-7781 is rated as a critical vulnerability, as it allows an authenticated user to view passwords in clear text, leading to potential privilege escalation.
How do I fix CVE-2018-7781?
To mitigate CVE-2018-7781, upgrade the firmware of the affected Schneider Electric Pelco Sarix Professional cameras to version 3.29.69 or later.
What types of devices are affected by CVE-2018-7781?
CVE-2018-7781 affects Schneider Electric Pelco Sarix Professional 1st generation cameras with firmware versions prior to 3.29.69.
What is the impact of exploiting CVE-2018-7781?
Exploitation of CVE-2018-7781 can result in unauthorized access to sensitive information, including passwords, and lead to privilege escalation.
How can I check if my device is vulnerable to CVE-2018-7781?
To determine if your device is vulnerable to CVE-2018-7781, verify the firmware version of your Schneider Electric Pelco Sarix Professional cameras against the affected versions.
- agent/type
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/schneider-electric
- canonical/schneider-electric imps110-1e
- canonical/schneider-electric imps110-1 firmware
- canonical/schneider-electric imps110-1e firmware
- canonical/schneider electric imps110-1er
- canonical/schneider-electric imps110-1er firmware
- canonical/schneider-electric ibps110-1er firmware
- canonical/schneider electric imp1110-1e
- canonical/schneider electric imp1110-1
- canonical/schneider electric ibp1110-1er
- canonical/schneider-electric ibp1110-1er firmware
- canonical/schneider-electric imp219-1 firmware
- canonical/schneider-electric imp219-1e firmware
- canonical/schneider-electric imp219-1e
- canonical/schneider-electric imp219-1er firmware
- canonical/schneider-electric imp219-1
- canonical/schneider-electric ibp219-1er
- canonical/schneider-electric ibp219-1er firmware
- canonical/schneider electric imp319-1er
- canonical/schneider-electric imp319-1 firmware
- canonical/schneider-electric imp319-1e firmware
- canonical/schneider-electric ibp319-1er
- canonical/schneider electric imp519-1
- canonical/schneider-electric imp519-1 firmware
- canonical/schneider-electric imp519-1e firmware
- canonical/schneider-electric imp519-1er firmware
- canonical/schneider electric ibp519-1er