Beward N100 H.264 VGA IP Camera Cross-Site Request Forgery Vulnerability

A cross-site request forgery (CSRF) vulnerability has been identified in the Beward N100 H.264 VGA IP Camera, specifically in version M2.1.6. This vulnerability allows attackers to perform administrative actions by exploiting the lack of proper request validation. By crafting a malicious web page with a hidden form, an attacker can trick a logged-in user into submitting the form, thereby gaining unauthorized administrative access.

Impact

Exploitation of this vulnerability allows for cross-site request forgery, enabling attackers to perform actions with administrative privileges on behalf of a logged-in user.

Reproduction

To exploit this vulnerability, a malicious web page must be created that includes a hidden form. This form should be set to submit an 'add' action to the camera's admin parameters, including a base64-encoded username that corresponds to an admin user. When a logged-in user visits the page, the form is submitted automatically, adding the admin user without their knowledge.