CVE-2017-6180

Keekoon KK002 devices 1.8.12 HD have a Cross Site Request Forgery Vulnerability affecting goform/formChnUserPwd and goform/formUserMng (and the entire set of other pages).
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 34%
VendorProductVersion
keekoonvisionkk002_ip_camera_firmware
1.8.12
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://hsw69.wordpress.com/2015/10/22/keekoon-kk002-ip-camera-csrf-exploitation/
https://hsw69.wordpress.com/2015/10/22/keekoon-kk002-ip-camera-csrf-exploitation/