Unrated severityNVD Advisory· Published Jan 3, 2019· Updated Aug 5, 2024
CVE-2018-18244
CVE-2018-18244
Description
Cross-site scripting in syslog.html in VIVOTEK Network Camera Series products with firmware 0x06x to 0x08x allows remote attackers to execute arbitrary JavaScript code via an HTTP Referer Header.
Affected products
1- Range: 0x06x to 0x08x
Patches
Vulnerability mechanics
References
2- download.vivotek.com/downloadfile/support/cyber-security/vvtk-sa-2018-006-v1.pdfmitrex_refsource_CONFIRM
- blog.securityevaluators.com/vivotek-ip-camera-vulnerabilities-discovered-and-exploited-2e2531ecd244mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.