CVE-2014-3895

Published Jul 29, 2014

Last updated 10 years ago

Overview

Description: The I-O DATA TS-WLCAM camera with firmware 1.06 and earlier, TS-WLCAM/V camera with firmware 1.06 and earlier, TS-WPTCAM camera with firmware 1.08 and earlier, TS-PTCAM camera with firmware 1.08 and earlier, TS-PTCAM/POE camera with firmware 1.08 and earlier, and TS-WLC2 camera with firmware 1.02 and earlier allow remote attackers to bypass authentication, and consequently obtain sensitive credential and configuration data, via unspecified vectors.
Source: vultures@jpcert.or.jp
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.4
Impact score: 4.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-287

Evaluator

Comment: Per: http://jvn.jp/en/jp/JVN94592501/index.html "Products Affected TS-WLCAM firmware version 1.06 and earlier TS-WLCAM/V firmware version 1.06 and earlier TS-WPTCAM firmware version 1.08 and earlier TS-PTCAM firmware version 1.08 and earlier TS-PTCAM/POE firmware version 1.08 and earlier TS-WLC2 firmware version 1.02 and earlier"
Impact: -
Solution: -

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iodata:ts-wlcam\\/v_camera_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "506884F8-96FA-480A-96B9-6213A37AAAFE",
            "versionEndIncluding": "1.0.6"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iodata:ts-wlcam\\/v_camera:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7227CF1F-EF1A-4572-AA2E-7AAAF9EBBE5B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iodata:ts-wptcam_camera_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B46D5B36-8DCE-4C66-B56E-C63B4261DD9F",
            "versionEndIncluding": "1.0.8"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iodata:ts-wptcam_camera:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAD265FB-B8F9-40D9-8A19-C32FBE038020"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iodata:ts-wlcam_camera_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B38AA45-57E0-4C0D-B283-5D3031DE9977",
            "versionEndIncluding": "1.06"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iodata:ts-wlcam_camera:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "476413A4-5128-46EE-93EB-23F37C981DCC"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iodata:ts-ptcam\\/poe_camera_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29FA62AB-CBF2-4BC3-A98C-8328687C64AF",
            "versionEndIncluding": "1.08"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iodata:ts-ptcam\\/poe_camera:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD15C82A-ED6F-4C5C-B7E8-0C844B51C49D"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iodata:ts-wlc2_camera_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C25DDC9-833D-496C-ACE3-9C3EA99D90C2",
            "versionEndIncluding": "1.02"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iodata:ts-wlc2_camera:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CEC260D-9795-4206-B83F-D2104FAEC04B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iodata:ts-ptcam_camera_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5960A3F9-03A8-4F09-9EB3-48935215951B",
            "versionEndIncluding": "1.08"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iodata:ts-ptcam_camera:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FAA2FECD-B383-4E34-855E-CE8507677039"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Evaluator

Configurations

References