CSRF Vulnerability in Grandstream Security Cameras
CVE-2013-3963

Currently unrated

Key Information:

Vendor: Grandstream
Status: Gxv Device Firmware; Gxv3500; Gxv3501; Gxv3504
Vendor: CVE Published:; 1 October 2013

🔔 Create Grandstream Vulnerability Alert

What is CVE-2013-3963?

A cross-site request forgery (CSRF) vulnerability exists in the user management interface of Grandstream's GXV series cameras. This security flaw permits remote attackers to exploit the authentication of unspecified victims by crafting malicious requests that can alter user settings, including the addition of new users. This vulnerability affects various models in the GXV series, compromising the integrity of user accounts and potentially allowing unauthorized access to sensitive video feeds.

References

http://seclists.org/fulldisclosure/2013/Jun/84

mailing-listx_refsource_FULLDISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 1, 2013