Vulnerability Description
Castel NextGen DVR v1.0.0 is vulnerable to privilege escalation through the Adminstrator/Users/Edit/:UserId functionality. Adminstrator/Users/Edit/:UserId fails to check that the request was submitted by an Administrator. This allows a normal user to escalate their privileges by adding additional roles to their account.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Castel | Nextgen Dvr Firmware | 1.0.0 |
| Castel | Nextgen Dvr | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/157954/Castel-NextGen-DVR-1.0.0-Bypass-CSRFExploitThird Party Advisory
- http://seclists.org/fulldisclosure/2020/Jun/8ExploitMailing ListThird Party Advisory
- https://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypasExploitThird Party Advisory
- http://packetstormsecurity.com/files/157954/Castel-NextGen-DVR-1.0.0-Bypass-CSRFExploitThird Party Advisory
- http://seclists.org/fulldisclosure/2020/Jun/8ExploitMailing ListThird Party Advisory
- https://www.securitymetrics.com/blog/attackers-known-unknown-authorization-bypasExploitThird Party Advisory
FAQ
What is CVE-2020-11679?
CVE-2020-11679 is a vulnerability with a CVSS score of 8.8 (HIGH). Castel NextGen DVR v1.0.0 is vulnerable to privilege escalation through the Adminstrator/Users/Edit/:UserId functionality. Adminstrator/Users/Edit/:UserId fails to check that the request was submitted...
How severe is CVE-2020-11679?
CVE-2020-11679 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-11679?
Check the references section above for vendor advisories and patch information. Affected products include: Castel Nextgen Dvr Firmware, Castel Nextgen Dvr.