CVE-2022-4621
Panasonic Sanyo CCTV Network Camera
Severity Score
8.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Panasonic Sanyo CCTV Network Cameras versions 1.02-05 and 2.03-0x are
vulnerable to CSRFs that can be exploited to allow an attacker to
perform changes with administrator level privileges.
Las cámaras de red Panasonic Sanyo CCTV en las versiones 1.02-05 y 2.03-0x son vulnerables a CSRF que pueden explotarse permitiendo que un atacante realice cambios con privilegios de nivel de administrador.
*Credits:
Gjoko Krstic of Zero Science Lab
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-12-20 CVE Reserved
- 2023-01-17 CVE Published
- 2024-08-03 CVE Updated
- 2024-08-09 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-352: Cross-Site Request Forgery (CSRF)
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://www.cisa.gov/uscert/ics/advisories/icsa-23-012-04 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://archives.connect.panasonic.com/security/sanyo/index.html | 2023-11-07 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Panasonic Search vendor "Panasonic" | Vcc-hd5600p Firmware Search vendor "Panasonic" for product "Vcc-hd5600p Firmware" | 2.03-06 Search vendor "Panasonic" for product "Vcc-hd5600p Firmware" and version "2.03-06" | - |
Affected
| in | Panasonic Search vendor "Panasonic" | Vcc-hd5600p Search vendor "Panasonic" for product "Vcc-hd5600p" | - | - |
Safe
|
| Panasonic Search vendor "Panasonic" | Vcc-hd3300p Firmware Search vendor "Panasonic" for product "Vcc-hd3300p Firmware" | 1.02-05 Search vendor "Panasonic" for product "Vcc-hd3300p Firmware" and version "1.02-05" | - |
Affected
| in | Panasonic Search vendor "Panasonic" | Vcc-hd3300p Search vendor "Panasonic" for product "Vcc-hd3300p" | - | - |
Safe
|
| Panasonic Search vendor "Panasonic" | Vcc-hd3300p Firmware Search vendor "Panasonic" for product "Vcc-hd3300p Firmware" | 2.03-08 Search vendor "Panasonic" for product "Vcc-hd3300p Firmware" and version "2.03-08" | - |
Affected
| in | Panasonic Search vendor "Panasonic" | Vcc-hd3300p Search vendor "Panasonic" for product "Vcc-hd3300p" | - | - |
Safe
|
| Panasonic Search vendor "Panasonic" | Vcc-hd3300 Firmware Search vendor "Panasonic" for product "Vcc-hd3300 Firmware" | 2.03-02 Search vendor "Panasonic" for product "Vcc-hd3300 Firmware" and version "2.03-02" | - |
Affected
| in | Panasonic Search vendor "Panasonic" | Vcc-hd3300 Search vendor "Panasonic" for product "Vcc-hd3300" | - | - |
Safe
|
| Panasonic Search vendor "Panasonic" | Vcc-hd2100p Firmware Search vendor "Panasonic" for product "Vcc-hd2100p Firmware" | 2.03-02 Search vendor "Panasonic" for product "Vcc-hd2100p Firmware" and version "2.03-02" | - |
Affected
| in | Panasonic Search vendor "Panasonic" | Vcc-hd2100p Search vendor "Panasonic" for product "Vcc-hd2100p" | - | - |
Safe
|
| Panasonic Search vendor "Panasonic" | Vcc-hd3100p Firmware Search vendor "Panasonic" for product "Vcc-hd3100p Firmware" | 2.03-00 Search vendor "Panasonic" for product "Vcc-hd3100p Firmware" and version "2.03-00" | - |
Affected
| in | Panasonic Search vendor "Panasonic" | Vcc-hd3100p Search vendor "Panasonic" for product "Vcc-hd3100p" | - | - |
Safe
|