12 matches found
CVE-2024-31799
Information Disclosure in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to read the WiFi passphrase via the UART Debugging Port...
CVE-2024-31799
Information Disclosure in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to read the WiFi passphrase via the UART Debugging Port...
GNCC GC2 安全漏洞
The GNCC GC2 is an indoor security camera from GNCC. A security vulnerability exists in GNCC GC2. An attacker exploited the vulnerability to obtain a privileged command shell via the UART debug port...
GNCC GC2 安全漏洞
The GNCC GC2 is an indoor security camera from GNCC. A security vulnerability exists in the GNCC GC2 that stems from the ability to read WiFi passwords via the UART debug port...
CVE-2024-31798
Identical Hardcoded Root Password for All Devices in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to retrieve the root password for all similar devices...
CVE-2024-31800
Authentication Bypass in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to gain a privileged command shell via the UART Debugging Port...
CVE-2024-31799
CVE-2024-31799 affects GNCC’s GC2 Indoor Security Camera 1080P. The flaw: an attacker with physical access can read the WiFi passphrase through the UART Debug Port, exposing sensitive network credentials via direct hardware access. The underlying cause is information disclosure via an accessible ...
CVE-2024-31800
Authentication Bypass in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to gain a privileged command shell via the UART Debugging Port...
CVE-2024-31800
The CVE-2024-31800 entry concerns the GNCC GC2 Indoor Security Camera 1080P. Affected component: the device’s UART Debugging Port enables an authentication bypass, allowing a physically present attacker to obtain a privileged command shell. Documented impact includes high confidentiality, integri...
CVE-2024-31798
CVE-2024-31798 affects GNCC GC2 Indoor Security Camera 1080P. The vulnerability is caused by an identical hardcoded root password used across all devices, allowing a person with physical access to recover the root password for all similar devices. Impact stated in sources is that an attacker with...
sac-isc-gc2.hiringplatform.ca Cross Site Scripting vulnerability OBB-3629199
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Chinese APT41 Hackers Target Mobile Devices with New WyrmSpy and DragonEgg Spyware
The prolific China-linked nation-state actor known as APT41 has been linked to two previously undocumented strains of Android spyware called WyrmSpy and DragonEgg. "Known for its exploitation of web-facing applications and infiltration of traditional endpoint devices, an established threat actor...