CVE-2013-4629 in Video Conference Systeminfo

Summary

The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated users to hijack sessions via an unspecified interception method.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

06/20/2013

Disclosure

06/20/2013

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
8769	Huawei Video Conference System Session credentials management	255	Proof-of-Concept	Official fix	CVE-2013-4629

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!