EUVD-2018-5064

Malware in sbrugna...

CVE-2024-46959

runofast Indoor Security Camera for Baby Monitor has a default password of password for the root account. This allows access to the /stream1 URI via the rtsp:// protocol to receive the video and audio stream...

Unitree Robotics A1 Security Breach

Unitree Robotics A1 is a quadrupedal robot from Chinese company Unitree Robotics. A security vulnerability exists in Unitree Robotics A1 version 1.16, which stems from an authentication bypass vulnerability. This vulnerability can be exploited by a local attacker to conduct a man-in-the-middle MI...

PT-2023-23115 · Robot · Robot

Name of the Vulnerable Software and Affected Versions: Robot affected versions not specified Description: The issue allows a local attacker to bypass authentication and perform a Man-in-the-Middle MITM attack on the robot's camera video stream. This could lead to the consumption of the robot's...

Arteco Web Client DVR/NVR Session Hijacking Vulnerability

The session identifier used by Arteco Web Client DVR/NVR is of an insufficient length and can be brute forced, allowing a remote attacker to obtain a valid session, bypass authentication, and disclose the live camera stream. !/usr/bin/env python3 Arteco Web Client DVR/NVR 'SessionId' Cookie Brute...

Arteco Web Client DVR/NVR Session Hijacking

!/usr/bin/env python3 Arteco Web Client DVR/NVR 'SessionId' Cookie Brute Force Session Hijacking Exploit Vendor: Arteco S.U.R.L. Product web page: https://www.arteco-global.com Affected version: n/a Summary: Arteco DVR/NVR is a mountable industrial surveillance server ideal for those who need to...

CVE-2018-13115

Affected: KERUI Wifi Endoscope Camera (YPC99). Description: Lack of authentication allows an attacker to watch or block the camera stream via the RTSP server (port 7070). The server accepts STOP to stop streaming and SETSSID to disconnect a user. CVSS metrics indicate Network access with Low atta...