CVE-2013-1391

Published Oct 30, 2019
Last updated 5 years ago
CVSS high 7.5
Overview

Description: Authentication bypass vulnerability in the the web interface in Hunt CCTV, Capture CCTV, Hachi CCTV, NoVus CCTV, and Well-Vision Inc DVR systems allows a remote attacker to retrieve the device configuration.
Source: cve@mitre.org
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses

nvd@nist.gov: CWE-287
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dvr-04ch_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3C04D14-F711-46BD-B603-51B1D88049A3"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dvr-04ch:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C59F6F5D-6760-4B11-BDC5-AB92683E1BA1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dvr-04nc_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E33BAC2F-BFCC-46EF-8282-2A2797B12C56"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dvr-04nc:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C66CD76F-967C-4D7C-BE04-3AB445FA6341"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dvr-08ch_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1ED83E5-3CBD-4387-A1C8-61A804AB75C4"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dvr-08ch:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "24A88F34-DD14-4928-87D2-2C4533BE77E9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dvr-08nc_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C3239F7-24AB-4D25-B208-E3BE64F88619"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dvr-08nc:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BDEE508F-9B2A-4CDD-A3D7-17673439798D"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dvr-16ch_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADB76476-F53E-44E3-895F-0F8A0B489E51"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dvr-16ch:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F1D9B8ED-A891-444D-B081-69BDA14932A0"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dr6-704a4h_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4A90FEF-DB75-4104-95D4-54791925A0AD"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dr6-704a4h:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3DE43A6A-41D2-4227-BF32-4D00DFD9E6E1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dr6-708a4h_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA017160-104A-4DD0-96EC-F8189C41ECBC"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dr6-708a4h:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B1976879-9260-4C85-B120-97CDF4DD8C2C"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dr6-7316a4h_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88D11B83-E4B0-4367-96E1-1A4A70B42C49"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dr6-7316a4h:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9286200D-A69F-4594-8C93-845C9E95D7F2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:dr6-7316a4hl_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17D60E7F-9F85-4C9F-B1F2-C31ADE0C0C9E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:dr6-7316a4hl:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "76946834-E463-470B-A80B-25B622F78E00"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:hdr-04kd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6B80BBE-3276-474F-AA6B-0FE8DA623822"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:hdr-04kd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1769367E-DE7E-4C50-A4C8-CB08DDBA8AD6"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huntcctv:hdr-08kd_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B7DE53A-41B2-4F31-9FA0-F95A499E1453"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huntcctv:hdr-08kd:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E1C3EBC6-E94F-4686-A102-C788E882DC65"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:capturecctv:cdr_0410ve_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20869EA9-D1DF-4448-90BF-7BF9D61DF147"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:capturecctv:cdr_0410ve:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5C9C6B70-DD93-4870-8A9B-FCAE4C5EF807"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:capturecctv:cdr_0820vde_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "231F9364-0892-4A0F-A0D0-DE28DF9BA174"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:capturecctv:cdr_0820vde:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1D69D16A-6CA3-428D-AE6C-5B4F98659506"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:hachi:hv-04rd_pro_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36724040-9414-445A-935C-9003F97111D3"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:hachi:hv-04rd_pro:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "240C1969-9C85-4EEC-9852-9F1EBB4D586E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:hachi:hv-08rd_pro_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0A170C4-BFC7-4F16-8817-822331E73C8F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:hachi:hv-08rd_pro:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "31C3A39E-F6FB-4D45-8953-D77D0A21F2F4"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:novuscctv:nv-dvr1204_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D435E05-CF32-4779-BA0D-632B00457F5D"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:novuscctv:nv-dvr1204:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6ED73882-2391-434C-8582-DA78C28D6B41"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:novuscctv:nv-dvr1208_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "098C9BAE-3C27-4870-ACFE-6A065F1E1383"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:novuscctv:nv-dvr1208:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4F1D3E96-3865-4749-BF6A-6FF04BDE133E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:novuscctv:nv-dvr1216_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3819BD62-75FF-436C-A004-08170620F2FA"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:novuscctv:nv-dvr1216:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "679A7AC6-DD2C-4F7E-A917-F065AA683683"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:vsp:tw-dvr604_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C8D5D54-BD80-4ED0-AA4D-3BA2551F5499"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:vsp:tw-dvr604:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "08756312-F710-41CB-B622-C26A752545E9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:vsp:tw-dvr616_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F762A6EB-B07B-483D-818B-53EB4EFF71FF"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:vsp:tw-dvr616:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "111B9D6F-4FC9-4752-9851-F77640A2EBC9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
