CVE-2013-3312

HIGH

Loftek Nexus 543 Firmware - Cross-Site Request Forgery via set_users.cgi

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-3312. PoCs published by Craig Young.

AI-analyzed exploit summary The exploit consists of three parts: a CSRF PoC to reset credentials, a script to dump kernel memory via path traversal (CVE-2013-3311), and a script to retrieve WiFi credentials via path traversal (CVE-2013-3314). The latter two scripts use curl to fetch sensitive files from the Loftek Nexus 543 IP camera.

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the Loftek Nexus 543 IP Camera allow remote attackers to hijack the authentication of unspecified victims for requests that change (1) passwords or (2) firewall configuration, as demonstrated by a request to set_users.cgi.

Exploits (1)

exploitdb WORKING POC
by Craig Young · textwebappshardware
https://www.exploit-db.com/exploits/27878

The exploit consists of three parts: a CSRF PoC to reset credentials, a script to dump kernel memory via path traversal (CVE-2013-3311), and a script to retrieve WiFi credentials via path traversal (CVE-2013-3314). The latter two scripts use curl to fetch sensitive files from the Loftek Nexus 543 IP camera.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Loftek Nexus 543 IP Camera
No auth needed
Prerequisites: Network access to the target IP camera
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/27878

Scores

CVSS v3 8.8
EPSS 0.0089
EPSS Percentile 54.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-352
Status published
Products (1)
loftek/nexus_543_firmware
Published Nov 21, 2019
Tracked Since Feb 18, 2026