The D-Link DCS-932L camera with firmware 1.02 allows remote attackers to discover the password via a UDP broadcast packet, as demonstrated by running the D-Link Setup Wizard and reading the _paramR["P"] value.
References
Configurations
Configuration 1 (hide)
AND |
|
History
26 Apr 2023, 19:27
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:d-link:dcs-932l:-:*:*:*:*:*:*:* |
cpe:2.3:h:dlink:dcs-932l:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dcs-932l_firmware:1.02:*:*:*:*:*:*:* |
Information
Published : 2012-12-24 18:55
Updated : 2024-02-04 18:16
NVD link : CVE-2012-4046
Mitre link : CVE-2012-4046
CVE.ORG link : CVE-2012-4046
JSON object : View
Products Affected
dlink
- dcs-932l
- dcs-932l_firmware
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor