Описание
An information leak exists in Wanscam's HW0021 network camera that allows an unauthenticated remote attacker to recover the administrator username and password via an ONVIF GetSnapshotUri request.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:wanscam:hw0021_firmware:11.6.5.1.1-20161213:*:*:*:*:*:*:*
cpe:2.3:h:wanscam:hw0021:-:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00948
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
CWE-522
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
An information leak exists in Wanscam's HW0021 network camera that allows an unauthenticated remote attacker to recover the administrator username and password via an ONVIF GetSnapshotUri request.
EPSS
Процентиль: 76%
0.00948
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-200
CWE-522