CVE-2019-10710

2019-04-23T20:32:00
ID CVE-2019-10710
Type cve
Reporter cve@mitre.org
Modified 2019-05-02T13:29:00

Description

Insecure permissions in the Web management portal on all IP cameras based on Hisilicon Hi3510 firmware allow authenticated attackers to receive a network's cleartext WiFi credentials via a specific HTTP request. This affects certain devices labeled as HI3510, HI3518, LOOSAFE, LEVCOECAM, Sywstoda, BESDER, WUSONGLUSAN, GADINAN, Unitoptek, ESCAM, etc.