CVE-2024-3160
Published: Apr 2, 2024
Modified: Aug 26, 2024
CVSS v3.1
5.3
Description
** DISPUTED ** A vulnerability, which was classified as problematic, was found in Intelbras MHDX 1004, MHDX 1008, MHDX 1016, MHDX 5016, HDCVI 1008 and HDCVI 1016 up to 20240401. This affects an unknown part of the file /cap.js of the component HTTP GET Request Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The identifier VDB-258933 was assigned to this vulnerability. NOTE: The vendor explains that they do not classify the information shown as sensitive and therefore there is no vulnerability which is about to harm the user.
| Vendor | Product | Versions |
|---|---|---|
Intelbras | MHDX 1004 | affected 20240401 |
Intelbras | MHDX 1008 | affected 20240401 |
Intelbras | MHDX 1016 | affected 20240401 |
Intelbras | MHDX 5016 | affected 20240401 |
Intelbras | HDCVI 1008 | affected 20240401 |
Intelbras | HDCVI 1016 | affected 20240401 |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now