CVE-2019-14703

A CSRF issue was discovered in webparam?user&action=set&param=add in HTTPD on MicroDigital N-series cameras with firmware through 6400.0.8.5 to create an admin account.

Published : 2019-08-06 23:15 Updated : 2019-08-13 20:45

6.8
CVSS Score More info
Score 6.8 / 10
6.8
Vendor Product Version URI
Microdigital Mdc-n2190v Firmware 6400.0.8.5 cpe:/o:microdigital:mdc-n2190v_firmware:6400.0.8.5
Microdigital Mdc-n4090 Firmware 6400.0.8.5 cpe:/o:microdigital:mdc-n4090_firmware:6400.0.8.5
Microdigital Mdc-n4090w Firmware 6400.0.8.5 cpe:/o:microdigital:mdc-n4090w_firmware:6400.0.8.5
  1. Microdigital (3) Search CVE
    1. Mdc-n4090w Firmware (1) Search CVE
      1. 6400.0.8.5
    2. Mdc-n2190v Firmware (1) Search CVE
      1. 6400.0.8.5
    3. Mdc-n4090 Firmware (1) Search CVE
      1. 6400.0.8.5

CWE

ID Name Description Links
CWE-352 Cross-Site Request Forgery (CSRF) The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. CVE

History of changes

Date Event
2019-08-13 20:45
2019-08-06 23:15

New CVE