Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cellinx NVT – IP PTZ Camera Privilege Escalation
Vulnerability Description
On Cellinx Camera with guest enabled, attacker with web access can elevate privileges to administrative: "1" to "0" privileges by changing the following cookie values from "is_admin", "showConfig". Administrative Privileges which allows changing various configuration in the camera.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:H
Vulnerability Type
N/A
Vulnerability Title
Cellinx NVT IP PTZ 安全漏洞
Vulnerability Description
Cellinx NVT IP PTZ是韩国Cellinx公司的一个摄像机设备。 Cellinx NVT IP PTZ 存在安全漏洞,在启用guest的Cellinx Camera上,通过修改以下cookie值“is_admin”,“showConfig”,攻击者可以将web访问权限提升到管理权限,并允许改变相机的各种配置。
CVSS Information
N/A
Vulnerability Type
N/A