CVE-2023-22370 in CS-WMV02Ginfo

Summary

by MITRE • 02/14/2023

** UNSUPPORTED WHEN ASSIGNED ** Stored cross-site scripting vulnerability in Wired/Wireless LAN Pan/Tilt Network Camera CS-WMV02G all versions allows a network-adjacent authenticated attacker to inject an arbitrary script. NOTE: This vulnerability only affects products that are no longer supported by the developer.

Once again VulDB remains the best source for vulnerability data.

Analysis

by VulDB Data Team • 03/12/2023

This stored cross-site scripting vulnerability exists in the Wired/Wireless LAN Pan/Tilt Network Camera model CS-WMV02G across all versions, representing a critical security flaw that enables authenticated attackers within the network adjacency range to execute arbitrary scripts on affected devices. The vulnerability stems from inadequate input validation and output encoding mechanisms within the camera's web interface, allowing malicious actors to store malicious script code that persists and executes when other users interact with the affected system. This type of vulnerability falls under CWE-79 which specifically addresses cross-site scripting flaws where untrusted data is improperly sanitized before being rendered in web pages. The attack vector requires network adjacency and authentication, meaning that an attacker must already have valid credentials to access the camera's administrative interface or user-facing web portal, but once authenticated, they can inject persistent malicious code that affects all users who view the compromised pages.

The operational impact of this vulnerability extends beyond simple script execution, as it provides attackers with potential access to sensitive camera functionality including video feeds, configuration settings, and user management controls. Attackers could leverage this vulnerability to redirect users to malicious sites, steal session cookies, or even gain complete control over the camera's operational parameters. The persistence aspect of stored XSS means that the malicious code remains active until manually removed by administrators, creating an ongoing security risk that can be exploited repeatedly over time. This vulnerability directly aligns with ATT&CK technique T1566.001 which covers social engineering through malicious web content, and T1071.004 which addresses application layer protocol traffic manipulation. The affected camera model's end-of-life status compounds the risk significantly since no security updates or patches are available to address this flaw, leaving organizations with no official remediation path.

Organizations utilizing this camera model should immediately implement network segmentation strategies to isolate these devices from critical systems and user networks, while also considering physical security measures to prevent unauthorized access to the camera's administrative interfaces. Network monitoring solutions should be configured to detect anomalous traffic patterns that might indicate exploitation attempts, particularly around web interface access and data transmission from these devices. The lack of vendor support for this vulnerability means that organizations must rely on third-party security solutions or consider immediate replacement of these devices with supported models that receive regular security updates and patches. Security awareness training for personnel who might interact with these devices should emphasize the importance of not clicking on suspicious links or entering credentials on untrusted networks, as the vulnerability could be exploited through various attack vectors including phishing campaigns targeting camera administrators. Additionally, implementing web application firewalls specifically configured to detect and block XSS attack patterns can provide an additional layer of protection against exploitation attempts.

Reservation

12/28/2022

Disclosure

02/14/2023

Moderation

accepted

CPE

ready

EPSS

0.00293

KEV

no

Activities

very low

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!