Hvg Video Gateway Firmware
Vulnerabilities
3
Known exploited
0
Max CVSS
10
Top EPSS
0.03445
Severity breakdown
Critical
3
High
0
Medium
0
Low
0
Affected version ranges
≤ 2.2.26a100≤ 2.2.26a77
Also matched as (raw): hvg_video_gateway_firmware
Top vulnerabilities
CVE-2015-0930The web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a100 has a hardcoded administrative password, which makes it easier for remote attackers to obtain access via an HTTP session.
CVE-2015-0929time.htm in the web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a78 allows remote attackers to bypass authentication and obtain administrative access by leveraging a cookie received in an HTTP response.
CVE-2015-1469time.htm in the web interface on SerVision HVG Video Gateway devices with firmware through 2.2.26a100 allows remote authenticated users to gain privileges by leveraging a cookie received in an HTTP response, a different vulnerability than CVE-2015-0929 and CVE-2015-0930.