← Back

CVE-2013-3586

nvd nist
Published: Aug 28, 2013Modified: Apr 29, 2026

JSON object

Loading...
7.6
Vector
AV:N/AC:H/Au:N/C:C/I:C/A:C
Exploitability: 4.9 / Impact: 10.0
Source: NVD

Description

Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie.

Affected (2)

Samsung
2 products
Smart Viewer
Dvr
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Smart Viewer
All versions
Dvr
All versions

Related CWEs

CWE-287
Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (2)

Source: cret@cert.org
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource

Timeline

No history available yet.