{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T12:45:14.648","vulnerabilities":[{"cve":{"id":"CVE-2018-12675","sourceIdentifier":"cve@mitre.org","published":"2018-10-19T22:29:01.100","lastModified":"2024-11-21T03:45:39.553","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) does not perform origin checks on URLs that the camera's web interface redirects a user to. This can be leveraged to send a user to an unexpected endpoint."},{"lang":"es","value":"Las cámaras HD de SV3C (L-SERIES V2.3.4.2103-S50-NTD-B20170508B y V2.3.4.2103-S50-NTD-B20170823B) no realiza comprobaciones de origen en las URL a las que la interfaz web de la cámara redirige a los usuarios. Esto puede aprovecharse para enviar a un usuario a un endpoint inesperado."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:N","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-601"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sv3c:h.264_poe_ip_camera_firmware:v2.3.4.2103-s50-ntd-b20170508b:*:*:*:*:*:*:*","matchCriteriaId":"04629989-19B2-4918-8BF0-595A0D41AF15"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sv3c:sv-b01poe-1080p-l:-:*:*:*:*:*:*:*","matchCriteriaId":"75735EC9-F77D-4631-AD88-05832AEBBDFF"},{"vulnerable":false,"criteria":"cpe:2.3:h:sv3c:sv-b11vpoe-1080p-l:-:*:*:*:*:*:*:*","matchCriteriaId":"D34E8126-3534-4675-AC35-10108A27DF81"},{"vulnerable":false,"criteria":"cpe:2.3:h:sv3c:sv-d02poe-1080p-l:-:*:*:*:*:*:*:*","matchCriteriaId":"14196DC9-EC58-4398-BE34-214ABCC39DE8"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:sv3c:h.264_poe_ip_camera_firmware:v2.3.4.2103-s50-ntd-b20170823b:*:*:*:*:*:*:*","matchCriteriaId":"217C05D7-FD38-4BF4-8CD4-6DB6D3BA208D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:sv3c:sv-b01poe-1080p-l:-:*:*:*:*:*:*:*","matchCriteriaId":"75735EC9-F77D-4631-AD88-05832AEBBDFF"},{"vulnerable":false,"criteria":"cpe:2.3:h:sv3c:sv-b11vpoe-1080p-l:-:*:*:*:*:*:*:*","matchCriteriaId":"D34E8126-3534-4675-AC35-10108A27DF81"},{"vulnerable":false,"criteria":"cpe:2.3:h:sv3c:sv-d02poe-1080p-l:-:*:*:*:*:*:*:*","matchCriteriaId":"14196DC9-EC58-4398-BE34-214ABCC39DE8"}]}]}],"references":[{"url":"https://www.bishopfox.com/news/2018/10/sv3c-l-series-hd-camera-multiple-vulnerabilities/","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://www.bishopfox.com/news/2018/10/sv3c-l-series-hd-camera-multiple-vulnerabilities/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}