CVE-2018-7781
published 2018-07-03CVE-2018-7781: In Schneider Electric Pelco Sarix Professional 1st generation cameras with firmware versions prior to 3.29.69, by sending a specially crafted request an…
high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
In Schneider Electric Pelco Sarix Professional 1st generation cameras with firmware versions prior to 3.29.69, by sending a specially crafted request an authenticated user can view password in clear text and results in privilege escalation.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | ibp1110-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | ibp219-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | ibp319-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | ibp519-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | ibps110-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp1110-1_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp1110-1e_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp1110-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp219-1_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp219-1e_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp219-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp319-1_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp319-1e_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp319-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp519-1_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp519-1e_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imp519-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imps110-1_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imps110-1e_firmware | < 3.29.69 | 3.29.69 |
| schneider-electric | imps110-1er_firmware | < 3.29.69 | 3.29.69 |
| schneider_electric_se | pelco_sarix_professional_v1 | — | — |