Cross-site Scripting Vulnerability in Grandstream Video Cameras
CVE-2013-3962

Currently unrated

Key Information:

Vendor
CVE Published:
1 October 2013

What is CVE-2013-3962?

The vulnerability in Grandstream's video surveillance cameras allows remote attackers to exploit insecure web forms by injecting arbitrary web scripts or HTML through the PATH_INFO variable, compromising the integrity of the devices and potentially the networks they operate within. This issue affects multiple camera models prior to firmware version 1.0.4.44 and highlights the need for robust web application security measures to prevent unauthorized access to sensitive functionalities.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.
CVE-2013-3962 : Cross-site Scripting Vulnerability in Grandstream Video Cameras