CVE-2018-12671

CRITICAL

SV3C H.264 PoE IP Camera Firmware V2.3.4.2103-S50-NTD-B20170508B/B20170823B - Sensitive Information Exposure

Title source: llm
STIX 2.1

Description

An attacker with remote access to the SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) web interface can disclose information about the camera including all password sets set within the camera. This information can then be used to gain access to the web interface.

References (1)

Core 1
Core References

Scores

CVSS v3 9.8
EPSS 0.0127
EPSS Percentile 66.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-200
Status published
Products (2)
sv3c/h.264_poe_ip_camera_firmware v2.3.4.2103-s50-ntd-b20170508b
sv3c/h.264_poe_ip_camera_firmware v2.3.4.2103-s50-ntd-b20170823b
Published Oct 19, 2018
Tracked Since Feb 18, 2026