getConfigExportFile.cgi on FLIR Brickstream 2300 devices 2.0 4.1.53.166 has Incorrect Access Control, as demonstrated by reading the AVI_USER_ID and AVI_USER_PASSWORD fields via a direct request.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-01-01T20:00:00
Updated: 2024-08-05T04:57:22.989Z
Reserved: 2018-01-01T00:00:00
Link: CVE-2018-3813
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-01-01T20:29:00.207
Modified: 2018-01-17T18:15:37.540
Link: CVE-2018-3813
Redhat
No data.