Description
Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie.
Exploits (1)
exploitdb
WORKING POC
by Andrea Fabrizi · textwebappshardware
https://www.exploit-db.com/exploits/27753
References (1)
Core 1
Core References
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/882286
Scores
EPSS
0.0779
EPSS Percentile
92.0%
Details
CWE
CWE-287
Status
published
Products (2)
samsung/dvr
samsung/smart_viewer
Published
Aug 28, 2013
Tracked Since
Feb 18, 2026