PT-2015-5307 · Servision · Hvg Video Gateway Firmware

Richard Tafoya

Published

2015-02-03

Updated

2015-02-04

CVE-2015-1469

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

time.htm in the web interface on SerVision HVG Video Gateway devices with firmware through 2.2.26a100 allows remote authenticated users to gain privileges by leveraging a cookie received in an HTTP response, a different vulnerability than CVE-2015-0929 and CVE-2015-0930.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2015-1469

Affected Products

Hvg Video Gateway Firmware

PT-2015-5307 · Servision · Hvg Video Gateway Firmware

CVE-2015-1469

Weakness Enumeration

Related Identifiers

Affected Products

References · 2