Lucene search

K

XMeye P2P Cloud Server Security Vulnerabilities

cve
cve

CVE-2018-17917

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server may allow an attacker to use MAC addresses to enumerate potential Cloud IDs. Using this ID, the attacker can discover and connect to valid devices using one of the supported...

5.3CVSS

7AI Score

0.001EPSS

2018-10-10 03:29 PM
105
cve
cve

CVE-2018-17915

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server do not encrypt all device communication. This includes the XMeye service and firmware update communication. This could allow an attacker to eavesdrop on video feeds, steal XMeye login credentials, or impersonate the...

9.8CVSS

9.3AI Score

0.002EPSS

2018-10-10 03:29 PM
184
cve
cve

CVE-2018-17919

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server may allow an attacker to use an undocumented user account "default" with its default password to login to XMeye and access/view video...

6.5CVSS

7.9AI Score

0.001EPSS

2018-10-10 03:29 PM
89