CVE-2008-4390

7.5HIGH

Key Information:

Vendor: Cisco
Status: Wvc54gc
Vendor: CVE Published:; 9 December 2008

Summary

The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 sends cleartext configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by sniffing the network.

References

http://www.securityfocus.com/bid/32666

vdb-entryx_refsource_BID

http://www.kb.cert.org/vuls/id/528993

third-party-advisoryx_refsource_CERT-VN

http://www.kb.cert.org/vuls/id/MAPG-7HJKSA

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 9, 2008
Vulnerability Reserved
Oct 2, 2008

.