59 matches found
Researchers Uncover Over a Dozen Security Flaws in Akuvox E11 Smart Intercom
More than a dozen security flaws have been disclosed in E11, a smart intercom product made by Chinese company Akuvox. "The vulnerabilities could allow attackers to execute code remotely in order to activate and control the device's camera and microphone, steal video and images, or gain a network...
CVE-2021-39364
Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...
MediaTek Ccu 缓冲区错误漏洞
MediaTek Ccu is a camera control processor from MediaTek China. MediaTek ccu suffers from a buffer error vulnerability that stems from improper locking that could lead to memory corruption. This could result in a local elevation of privilege that requires system execution privileges...
CVE-2021-22943
A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect cameras assigned to said network. This vulnerability is fixed in UniFi Protect application V1.19.0 and later...
CVE-2021-22943
A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect cameras assigned to said network. This vulnerability is fixed in UniFi Protect application V1.19.0 and later...
Ubiquiti Networks UniFi Protect 授权问题漏洞
Ubiquiti Networks UniFi Protect is a network video recorder from Ubiquiti Networks, Inc. A security vulnerability exists in Ubiquiti Networks UniFi Protect application version 1.18.1 and prior, which can be exploited by attackers to A malicious actor who gains access to the network can take contr...
Improper access control
A smart camera product of ZTE is impacted by a permission and access control vulnerability. Due to the defect of user permission management by the cloud-end app, users whose sharing permissions have been revoked can still control the camera, such as restarting the camera, restoring factory...
New Android malware poses as “System Update” to steal your data
By Deeba Ahmed The malware is also capable of controlling the device's front and back camera to take photos periodically. This is a post from HackRead.com Read the original post: New Android malware poses as "System Update" to steal your data...
Geeni GNC-CW013 Trust Management Issues Vulnerability
Geeni GNC-CW013 is a webcam from Geeni USA. A security vulnerability exists in the Geeni GNC-CW013 doorbell version 1.8.1. An attacker can take full control of the camera using a highly privileged account...
CVE-2020-25747
The Telnet service of Rubetek RV-3406, RV-3409, and RV-3411 cameras firmware versions v342, v339 can allow a remote attacker to gain access to RTSP and ONFIV services without authentication. Thus, the attacker can watch live streams from the camera, rotate the camera, change some settings...
CVE-2020-25747
The Telnet service of Rubetek RV-3406, RV-3409, and RV-3411 cameras firmware versions v342, v339 can allow a remote attacker to gain access to RTSP and ONFIV services without authentication. Thus, the attacker can watch live streams from the camera, rotate the camera, change some settings...
CVE-2019-13953
An exploitable authentication bypass vulnerability exists in the Bluetooth Low Energy BLE authentication module of YI M1 Mirrorless Camera V3.2-cn. An attacker can send a set of BLE commands to trigger this vulnerability, resulting in sensitive data leakage e.g., personal photos. An attacker can...
CVE-2019-13953
An exploitable authentication bypass vulnerability exists in the Bluetooth Low Energy BLE authentication module of YI M1 Mirrorless Camera V3.2-cn. An attacker can send a set of BLE commands to trigger this vulnerability, resulting in sensitive data leakage e.g., personal photos. An attacker can...
Bluetooth Authentication Authorization Bypass Vulnerability in Little Ant Microscan Camera M1
The Ant Microscan Camera M1 is a microscan camera with built-in Bluetooth and wireless capabilities that allow photos to be transferred to a cell phone. A Bluetooth authentication authorization bypass vulnerability exists in the Ant Microsingle Camera M1. An attacker can use this vulnerability to...
Design/Logic Flaw
Amcrest IPM-721S V2.420.AC00.16.R.20160909 devices mishandle reboots within the past two hours. Amcrest cloud services does not perform a thorough verification when allowing the user to add a new camera to the user's account to ensure that the user actually owns the camera other than knowing the...
Security Camera Firm Arlo Zaps High-Severity Bugs
Two high-severity vulnerabilities in Arlo Technologies’ wireless home security camera gear have been patched. The flaws, which indirectly impact Arlo’s popular fleet of wireless home security cameras, are limited to adversaries with local network and physical access to Arlo Base Stations. Both...
CVE-2018-7698
An issue was discovered in D-Link mydlink+ 3.8.5 build 259 for DCS-933L 1.05.04 and DCS-934L 1.05.04 devices. The mydlink+ app sends the username and password for connected D-Link cameras such as DCS-933L and DCS-934L unencrypted from the app to the camera, allowing attackers to obtain these...
Default credentials
An issue was discovered in D-Link mydlink+ 3.8.5 build 259 for DCS-933L 1.05.04 and DCS-934L 1.05.04 devices. The mydlink+ app sends the username and password for connected D-Link cameras such as DCS-933L and DCS-934L unencrypted from the app to the camera, allowing attackers to obtain these...
Android new vulnerability: hackers control camera to take pictures to upload-vulnerability warning-the black bar safety net
According to foreign media reports, the former Google engineer Simon Isidore(Szymon Sidor found the Android system there is a new vulnerability, the vulnerability would allow malicious software to control Android device on the camera, and the user unknowingly take pictures, can even upload photos...
Remote Control Backdoor Vulnerability in Canon Canon vb-c60 Camera
Canon Japan is a Japanese company dedicated to imaging, optical and office automation products, including cameras, camcorders, copiers, fax machines, image scanners and printers. A remote control backdoor vulnerability exists in the Canon vb-c60 camera, which allows an attacker to send a get...