Authentication Bypass Vulnerability in Samsung Web Viewer for DVR Devices
CVE-2013-3586

Currently unrated

Key Information:

Vendor: Samsung
Status: Smart Viewer; Dvr
Vendor: CVE Published:; 28 August 2013

Summary

Samsung Web Viewer for DVR devices is susceptible to an authentication bypass, which allows remote attackers to exploit an arbitrary SessionID value in a cookie. This vulnerability can potentially lead to unauthorized access to the device, compromising sensitive data and control over the DVR functionalities.

References

http://www.kb.cert.org/vuls/id/882286

third-party-advisoryx_refsource_CERT-VN

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 28, 2013