VAR-201607-0721
Vulnerability from variot - Updated: 2022-05-17 01:36Vicon V920D and SN663V are all V9XX and SN6XX series network camera products from American Vicon Industries. Multiple Vicon Network Cameras products have an authentication bypass vulnerability. An attacker could use this vulnerability to bypass the authentication mechanism and perform unauthorized operations. The following products are affected: V-CELL-IP, V660V-P (Europe), V920D, V921D and other products. This may lead to further attacks
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201607-0721",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "industries network cameras",
"scope": null,
"trust": 0.6,
"vendor": "vicon",
"version": null
},
{
"model": "industries vn-901t encoder t1 v3.0.3",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v923d t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v923b t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v922d t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v922b t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v921d t4 v2.1.6",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v921b t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v920d t4 v2.1.6",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v905-cube t5 v2.4.3",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v660v-p t2 v2.7.3",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v-cell-ip t2 v2.7.3",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v-cell-hd t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn680d-wnir x1 1.4.9",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn680d-a-wnir x2 1.2.1",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn663v-a x2 1.2.1",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn663v x1 1.4.9",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce202d-wn t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce202d-n t6 v1.9.4",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce102d-nir t8 v1.4.3",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce102b-nir t8 v1.4.3",
"scope": null,
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v923d t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v923b t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v922d t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v922b t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v921d t4 v2.2.4",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v921b t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v920d t4 v2.2.4",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v905-cube t5 v2.4.8",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v660v-p t2 v2.7.8",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v-cell-ip t2 v2.7.8",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries v-cell-hd t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn680d-wnir x1 1.5.2",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn680d-a-wnir x2 1.2.3",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn663v-a x2 1.2.3",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries sn663v x1 1.5.2",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce202d-wn t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce202d-n t6 v1.9.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce102d-nir t8 v1.4.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
},
{
"model": "industries ce102b-nir t8 v1.4.9",
"scope": "ne",
"trust": 0.3,
"vendor": "vicon",
"version": null
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
},
{
"db": "BID",
"id": "92194"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Reginald Dodd",
"sources": [
{
"db": "BID",
"id": "92194"
},
{
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
],
"trust": 0.9
},
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CNVD-2016-05942",
"impactScore": 4.9,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "CNVD",
"id": "CNVD-2016-05942",
"trust": 0.6,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Vicon V920D and SN663V are all V9XX and SN6XX series network camera products from American Vicon Industries. \nMultiple Vicon Network Cameras products have an authentication bypass vulnerability. An attacker could use this vulnerability to bypass the authentication mechanism and perform unauthorized operations. The following products are affected: V-CELL-IP, V660V-P (Europe), V920D, V921D and other products. This may lead to further attacks",
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
},
{
"db": "CNNVD",
"id": "CNNVD-201607-1050"
},
{
"db": "BID",
"id": "92194"
}
],
"trust": 1.35
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "BID",
"id": "92194",
"trust": 1.5
},
{
"db": "CNVD",
"id": "CNVD-2016-05942",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-201607-1050",
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
},
{
"db": "BID",
"id": "92194"
},
{
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
]
},
"id": "VAR-201607-0721",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
}
],
"trust": 1.6
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
}
]
},
"last_update_date": "2022-05-17T01:36:36.880000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Patches for multiple ViconNetworkCameras product authentication bypass vulnerabilities",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/80048"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.2,
"url": "http://www.securityfocus.com/bid/92194"
},
{
"trust": 0.3,
"url": "http://www.vicon-security.com/software/vicon_camera/v9xxcameras_3-15_firmware-updated_release_notes.pdf"
},
{
"trust": 0.3,
"url": "http://www.vicon-security.com/"
},
{
"trust": 0.3,
"url": "http://seclists.org/bugtraq/2016/jul/149"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
},
{
"db": "BID",
"id": "92194"
},
{
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
},
{
"db": "BID",
"id": "92194"
},
{
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-08-03T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-05942"
},
{
"date": "2016-07-28T00:00:00",
"db": "BID",
"id": "92194"
},
{
"date": "2016-07-28T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-08-03T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-05942"
},
{
"date": "2016-07-28T00:00:00",
"db": "BID",
"id": "92194"
},
{
"date": "2016-08-01T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Multiple Vicon Network Cameras Product Authentication Bypass Vulnerabilities",
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-05942"
}
],
"trust": 0.6
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "permissions and access control",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201607-1050"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…