CVE-2013-3687

Ovislink Airlive Od-2025hd - Cryptographic Issue

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-3687.

AI-analyzed exploit summary This is a technical writeup detailing multiple vulnerabilities in Airlive devices, including CSRF, path traversal, information exposure, and DoS. It provides specific exploit URLs and a Python script for DoS testing.

Description

AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models use cleartext to store sensitive information, which allows attackers to obtain passwords, user names, and other sensitive information by reading an unspecified backup file.

Exploits (1)

exploitdb WRITEUP

webappshardware

https://www.exploit-db.com/exploits/26174

View Code ZIP pw:eip

This is a technical writeup detailing multiple vulnerabilities in Airlive devices, including CSRF, path traversal, information exposure, and DoS. It provides specific exploit URLs and a Python script for DoS testing.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Airlive WL2600CAM, POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD

No auth needed

Prerequisites: Network access to the target device

MITRE ATT&CK

T1189 - Drive-by Compromise T1006 - Direct Volume Access T1087 - Account Discovery T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Mailing List mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2013/Jun/84

Scores

EPSS 0.0265

EPSS Percentile 83.7%

Details

CWE

CWE-310

Status published

Products (6)

ovislink/airlive_od-2025hd

ovislink/airlive_od-2060hd

ovislink/airlive_poe100hd

ovislink/airlive_poe200hd

ovislink/airlive_poe250hd

ovislink/airlive_poe2600hd

Published Oct 11, 2013

Tracked Since Feb 18, 2026