CVE Vulnerabilities

CVE-2013-4629

Published: Jun 20, 2013 | Modified: Jun 21, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
8.5 HIGH
AV:N/AC:M/Au:S/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated users to hijack sessions via an unspecified interception method.

Affected Software

Name Vendor Start Version End Version
Vp_9610 Huawei * v100r002c02b019sp05
Vp_9620 Huawei * v100r002c02b019sp05

References