A smart camera product of ZTE is impacted by a permission and access control vulnerability. Due to the defect of user permission management by the cloud-end app, users whose sharing permissions have been revoked can still control the camera, such as restarting the camera, restoring factory settings, etc… This affects ZXHN HS562 V1.0.0.0B2.0000, V1.0.0.0B3.0000E
[
{
"product": "ZXHN HS562",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "V1.0.0.0B2.0000, V1.0.0.0B3.0000"
}
]
}
]