CVE-2015-8252
MEDIUMRSI Video Technologies Frontel Protocol < 2.0 - Exposure of Sensitive Information via Cleartext Serial Number
Title source: llmDescription
The Frontel protocol before 3 on RSI Video Technologies Videofied devices sends a cleartext serial number, which allows remote attackers to determine a hardcoded key by sniffing the network and performing a "jumbled up" calculation with this number.
References (2)
Core 2
Core References
Exploit x_refsource_misc
http://cybergibbons.com/alarms-2/multiple-serious-vulnerabilities-in-rsi-videofieds-alarm-protocol/
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
https://www.kb.cert.org/vuls/id/792004
Scores
CVSS v3
5.9
EPSS
0.0136
EPSS Percentile
68.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (1)
rsi_video_technologies/frontel_protocol
< 2.0
Published
Dec 27, 2015
Tracked Since
Feb 18, 2026