Description
The web interface on (1) Foscam and (2) Wansview IP cameras allows remote attackers to bypass authentication, and perform administrative functions or read the admin password, via a direct request to an unspecified URL.
References (6)
Core 6
Core References
Various Sources x_refsource_misc
http://foscam.us/forum/h264-ip-camera-web-interface-authentication-bypass-test-tool-t3252.html
Various Sources x_refsource_misc
http://www.foscam.com/help.aspx?TypeId=11
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/50966
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/265532
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/50950
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/55873
Scores
EPSS
0.0378
EPSS Percentile
88.6%
Details
CWE
CWE-287
Status
published
Products (2)
foscam/h.264_hi3510\/11\/12_ip_camera
wansview/h.264_hi3510\/11\/12_ip_camera
Published
Dec 21, 2012
Tracked Since
Feb 18, 2026