CVE-2013-3585

Samsung Smart Viewer - Credentials Management

Title source: rule

Description

Samsung Web Viewer for Samsung DVR devices stores credentials in cleartext, which allows context-dependent attackers to obtain sensitive information via vectors involving (1) direct access to a file or (2) the user-setup web page.

Exploits (1)

exploitdb WORKING POC

webappshardware

https://www.exploit-db.com/exploits/27753

View Code ZIP pw:eip

References (1)

[US Government Resource] http://www.kb.cert.org/vuls/id/882286

Scores

EPSS 0.1133

EPSS Percentile 93.6%

Details

CWE

CWE-255

Status published

Products (1)

samsung/smart_viewer

Published Aug 28, 2013

Tracked Since Feb 18, 2026