PT-2020-12183 · Icatch · Icatch Dvr

Weber Tsai

Published

2020-04-15

Updated

2022-05-03

CVE-2020-10513

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions iCatch DVR firmware version before 20200103

Description The file management interface of iCatch DVR contains broken access control, allowing an attacker to remotely manipulate arbitrary files.

Recommendations For iCatch DVR firmware version before 20200103, update to a version 20200103 or later to resolve the issue. As a temporary workaround, consider restricting access to the file management interface until a patch is available.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2020-10513

Affected Products

Icatch Dvr

PT-2020-12183 · Icatch · Icatch Dvr

CVE-2020-10513

Weakness Enumeration

Related Identifiers

Affected Products

References · 6