CVE-2013-1601

MEDIUM

Dlink Dcs-3411 Firmware - Information Disclosure

Title source: rule

Description

An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK WCS-1100 1.02, TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-7510 1.00, DCS-7410 1.00, DCS-6410 1.00, DCS-5635 1.01, DCS-5605 1.01, DCS-5230L 1.02, DCS-5230 1.02, DCS-3430 1.02, DCS-3411 1.02, DCS-3410 1.02, DCS-2121 1.06_FR, DCS-2121 1.06, DCS-2121 1.05_RU, DCS-2102 1.06_FR, DCS-2102 1.06, DCS-2102 1.05_RU, DCS-1130L 1.04, DCS-1130 1.04_US, DCS-1130 1.03, DCS-1100L 1.04, DCS-1100 1.04_US, and DCS-1100 1.03, which could let a malicious user obtain sensitive information. which could let a malicious user obtain sensitive information.

Exploits (1)

exploitdb WRITEUP
webappshardware
https://www.exploit-db.com/exploits/25138

References (5)

Scores

CVSS v3 5.3
EPSS 0.3989
EPSS Percentile 97.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-200
Status published
Products (21)
dlink/dcs-1100_firmware 1.03
dlink/dcs-1100_firmware 1.04
dlink/dcs-1100l_firmware 1.04
dlink/dcs-1130_firmware 1.03
dlink/dcs-1130_firmware 1.04
dlink/dcs-1130l_firmware 1.04
dlink/dcs-2102_firmware 1.05
dlink/dcs-2102_firmware 1.06
dlink/dcs-2121_firmware 1.05
dlink/dcs-2121_firmware 1.06
... and 11 more
Published Jan 28, 2020
Tracked Since Feb 18, 2026