vendor:
IP Camera
by:
icekam,xiao13,Rainbow,tfsec
7,5
CVSS
HIGH
Unauthorized Access
287
CWE
Product Name: IP Camera
Affected Version From: Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, TN540
Affected Version To: Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, TN540
Patch Exists: YES
Related CWE: CVE-2021-40381
CPE: h:compro_technology:ip_camera
Metasploit:
N/A
Other Scripts:
https://www.infosecmatter.com/nessus-plugin-library/?id=86017, https://www.infosecmatter.com/nessus-plugin-library/?id=27187, https://www.infosecmatter.com/nessus-plugin-library/?id=127171, https://www.infosecmatter.com/nessus-plugin-library/?id=33148, https://www.infosecmatter.com/nessus-plugin-library/?id=33752, https://www.infosecmatter.com/nessus-plugin-library/?id=10264, https://www.infosecmatter.com/nessus-plugin-library/?id=71433, https://www.infosecmatter.com/nessus-plugin-library/?id=47754, https://www.infosecmatter.com/nessus-plugin-library/?id=47753, https://www.infosecmatter.com/nessus-plugin-library/?id=66697
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: None
2021
Compro Technology IP Camera – ‘ index_MJpeg.cgi’ Stream Disclosure
Has an unauthorized access vulnerability, which can lead to unauthorized access to the camera video page. Payload: /cgi-bin/view/index_MJpeg.cgi
Mitigation:
Ensure that access to the camera video page is restricted to authorized users only.
