Lucene search

[email protected]NVD:CVE-2024-35344

HistoryMay 28, 2024 - 5:15 p.m.

CVE-2024-35344

2024-05-2817:15:10

[email protected]

web.nvd.nist.gov

anpviz

cryptographic key

firmware

ipc-d250

ipc-d260

ipc-b850

ipc-d850

ipc-d350

ipc-d3150

ipc-d4250

ipc-d380

ipc-d880

ipc-d280

ipc-d3180

mc800n

ym500l

ym800n_n2

ymf50b

ym800sv2

ym500l8

ym200e10

ip camera

6.5 Medium

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

JSON

Certain Anpviz products contain a hardcoded cryptographic key stored in the firmware of the device. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380, IPC-D880, IPC-D280, IPC-D3180, MC800N, YM500L, YM800N_N2, YMF50B, YM800SV2, YM500L8, and YM200E10 firmware v3.2.2.2 and lower and possibly more vendors/models of IP camera.

References

willgu.es/pages/anpviz-ip-camera-vuln.html