CVE编号
CVE-2018-7828利用情况
暂无补丁情况
N/A披露时间
2019-05-23漏洞描述
Schneider Electric 1st Gen Pelco Sarix Enhanced Camera和Schneider Electric Spectra Enhanced PTZ Camera都是法国施耐德电气(Schneider Electric)公司的产品。Schneider Electric 1st Gen Pelco Sarix Enhanced Camera是一系列固定式IP摄像机。Schneider Electric Spectra Enhanced PTZ Camera是一系列球型IP摄像机。Schneider Electric 1st Gen. Pelco Sarix Enhanced Camera和Spectra Enhanced PTZ Camera中存在跨站请求伪造漏洞。该漏洞源于WEB应用未充分验证请求是否来自可信用户。攻击者可利用该漏洞通过受影响客户端向服务器发送非预期的请求。
解决建议
目前厂商已发布升级补丁以修复漏洞,补丁获取链接:https://www.schneider-electric.com/en/download/document/SEVD-2019-045-03/
参考链接 |
|
|---|---|
| https://www.schneider-electric.com/en/download/document/SEVD-2019-045-03/ |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | d6220l_firmware | * |
From (including) 2.11 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | d6220_firmware | * |
From (including) 2.11 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | d6230l_firmware | * |
From (including) 2.11 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | d6230_firmware | * |
From (including) 2.11 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1ei_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1ep_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1es_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1i_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1p_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1s_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1vi_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1vp_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime119-1vs_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1ei_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1ep_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1es_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1i_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1p_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1s_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1vi_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1vp_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime219-1vs_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1ei_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1ep_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1es_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1i_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1p_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1s_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1vi_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1vp_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-1vs_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-b1i_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-b1p_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime3122-b1s_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1ei_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1ep_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1es_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1i_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1p_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1s_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1vi_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1vp_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-1vs_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-b1i_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-b1p_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ime319-b1s_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1ei_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1ep_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1es_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1i_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1p_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1s_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1vi_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1vp_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | imes19-1vs_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ixe11_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ixe21_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ixe31_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 系统 | schneider-electric | ixes1_firmware | * |
Up to (excluding) 2.2.3.0 |
|||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | d6220 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | d6220l | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | d6230 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | d6230l | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1ei | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1ep | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1es | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1i | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1vi | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1vp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime119-1vs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1ei | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1ep | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1es | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1i | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1vi | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1vp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime219-1vs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1ei | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1ep | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1es | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1i | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1vi | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1vp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-1vs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-b1i | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-b1p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime3122-b1s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1ei | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1ep | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1es | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1i | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1vi | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1vp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-1vs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-b1i | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-b1p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ime319-b1s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1ei | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1ep | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1es | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1i | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1s | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1vi | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1vp | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | imes19-1vs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ixe11 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ixe21 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ixe31 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | schneider-electric | ixes1 | - | - | |||||
- 攻击路径 网络
- 攻击复杂度 低
- 权限要求 无
- 影响范围 未更改
- 用户交互 需要
- 可用性 高
- 保密性 高
- 完整性 高
还没有评论,来说两句吧...