Vulnerability Description
Panasonic Sanyo CCTV Network Cameras versions 1.02-05 and 2.03-0x are vulnerable to CSRFs that can be exploited to allow an attacker to perform changes with administrator level privileges.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Panasonic | Vcc-Hd5600P Firmware | 2.03-06 |
| Panasonic | Vcc-Hd5600P | - |
| Panasonic | Vcc-Hd3300P Firmware | 1.02-05 |
| Panasonic | Vcc-Hd3300P | - |
| Panasonic | Vcc-Hd3300 Firmware | 2.03-02 |
| Panasonic | Vcc-Hd3300 | - |
| Panasonic | Vcc-Hd2100P Firmware | 2.03-02 |
| Panasonic | Vcc-Hd2100P | - |
| Panasonic | Vcc-Hd3100P Firmware | 2.03-00 |
| Panasonic | Vcc-Hd3100P | - |
Related Weaknesses (CWE)
References
- https://archives.connect.panasonic.com/security/sanyo/index.htmlVendor Advisory
- https://www.cisa.gov/uscert/ics/advisories/icsa-23-012-04Third Party AdvisoryUS Government Resource
- https://archives.connect.panasonic.com/security/sanyo/index.htmlVendor Advisory
- https://www.cisa.gov/uscert/ics/advisories/icsa-23-012-04Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2022-4621?
CVE-2022-4621 is a vulnerability with a CVSS score of 7.5 (HIGH). Panasonic Sanyo CCTV Network Cameras versions 1.02-05 and 2.03-0x are vulnerable to CSRFs that can be exploited to allow an attacker to perform changes with administrator level privileges.
How severe is CVE-2022-4621?
CVE-2022-4621 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-4621?
Check the references section above for vendor advisories and patch information. Affected products include: Panasonic Vcc-Hd5600P Firmware, Panasonic Vcc-Hd5600P, Panasonic Vcc-Hd3300P Firmware, Panasonic Vcc-Hd3300P, Panasonic Vcc-Hd3300 Firmware.