← Back

Cipcamptiwl Firmware

cipcamptiwl_firmware

Vendor: Conceptronic • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-6408
1Conceptronic
2Cipcamptiwl Firmware
Cipcamptiwl Web Firmware
Nov 21, 2024
Jan 30, 2018
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account.
CVE-2018-6407
1Conceptronic
2Cipcamptiwl Firmware
Cipcamptiwl Web Firmware
Nov 21, 2024
Jan 30, 2018
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The cr...Show more
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device.Show less