Clarification: The first line in this CVE [1] was a copy error
during message composition and is not part of the CVE. This line can
make it sound as if CVE-2016-5019 is only an information disclosure
vulnerability rather than a deserialization attack vector. I
apologize for the confusion.
On
Hi@all,
Product: Abus Security Cams
Vendor:Abus Group
Internal reference: -
Vulnerability type: Cross Site Scripting
Vulnerable version: 0101a and possible other versions affected (not tested)
Vulnerable component: FTP
Report confidence: Confirmed
Solution status: Not fixed by Vendor, will
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Note: the current version of the following document is available here:
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05281739
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c05281739
Version: 1
HPSBGN03650 rev.1 - HPE
