CVE-2017-7912

Summary

Hanwha Techwin SRN-4000, SRN-4000 firmware versions prior to SRN4000_v2.16_170401, A specially crafted http request and response could allow an attacker to gain access to the device management page with admin privileges without proper authentication.

Affected Software

VendorProductVersion RangeStatus
Hanwha TechwinSRN-4000firmware versions prior to SRN4000_v2.16_170401affected

Weaknesses

  • CWE-284: IMPROPER ACCESS CONTROL CWE-284

ADP Enrichment

CVE Program Container

Additional References

References