This Is the Ops Manual for the Most Tech-Savvy Animal Liberation Group in the US

For the first time, guerrilla animal rights group Direct Action Everywhere reveals a guide to its investigative tactics and toolkit, from spy cams to night vision and drones...

CVE-2022-38399

Missing protection mechanism for alternate hardware interface in SmaCam CS-QR10 all versions and SmaCam Night Vision CS-QR20 all versions allows an attacker to execute an arbitrary OS command by having the product connect to the product's specific serial connection...

Command injection

Missing protection mechanism for alternate hardware interface in SmaCam CS-QR10 all versions and SmaCam Night Vision CS-QR20 all versions allows an attacker to execute an arbitrary OS command by having the product connect to the product's specific serial connection...

CVE-2022-38399

CVE-2022-38399 affects Planex SmaCam CS-QR10 (all versions) and SmaCam Night Vision CS-QR20 (all versions). Root cause: missing protection mechanism for the alternate hardware interface, enabling an attacker with physical access to trigger arbitrary OS command execution by connecting to the devic...

PT-2022-24406 · Unknown · Smacam Night Vision Cs-Qr20 +1

Name of the Vulnerable Software and Affected Versions: SmaCam CS-QR10 all versions SmaCam Night Vision CS-QR20 all versions Description: A missing protection mechanism for an alternate hardware interface in the affected products allows an attacker to execute an arbitrary OS command by connecting ...

Planex Holding SmaCam CS-QR10和SmaCam Night Vision CS-QR20 授权问题漏洞

Planex Holding SmaCam CS-QR10 and Planex Holding SmaCam Night Vision CS-QR20 are both products of Planex Holding, Japan.Planex Holding SmaCam CS-QR10 is a networked smart camera. Holding SmaCam Night Vision CS-QR20 is a network camera. A security vulnerability exists in all versions of the SmaCam...

Default credentials

An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. They do not require users to change the default password for the admin account. They only show a pop-up window suggesting a change but...

CVE-2020-11623

An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. An attacker with physical access to the UART interface could access additional diagnostic and configuration functionalities as well as t...

Design/Logic Flaw

An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. An attacker with physical access to the UART interface could access additional diagnostic and configuration functionalities as well as t...

CVE-2020-11625

CVE-2020-11625 affects AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. The issue arises from ISAPI/Security/sessionLogin/capabilities responses that reveal whether a submitted username exists: a valid username r...

PT-2020-12735 · Avertx · Avertx Auto Focus Night Vision Hd Indoor/Outdoor Ip Dome Camera Hd838 +1

Name of the Vulnerable Software and Affected Versions: AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 AvertX Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438 Description: The issue allows attackers to identify legitimate usernames through different responses to...

Unmasking mystery boxes on ship’s bridges

We pen test a variety of vessel and platform types across different fleets and operators. In every single test to date we have unearthed a system or device, that of the few crew that were aware, no-one could tell us what it is was for. In other scenarios an undocumented system or device would be...

CVE-2018-9115

Systematic SitaWare 6.4 SP2 does not validate input from other sources sufficiently. e.g., information utilizing the NVG interface. An attacker can freeze the Situational Layer, which means that the Situational Picture is no longer updated. Unfortunately, the user cannot notice until he tries to...

DLINK DCS-5020L - Remote Code Execution (PoC)

DLINK DCS-5020L - Remote Code Execution PoC “The DCS-5020L Wireless N Day & Night Pan/Tilt Cloud Camera is a day/night network camera that easily connects to your existing home network for remote viewing on a range of mobile devices. It features pan, tilt and digital zoom function to allow you to...

Somebody’s watching! When cameras are more than just ‘smart’

Every year the number of smart devices grows. Coffee machines, bracelets, fridges, cars and loads of other useful gadgets have now gone smart. We are now seeing the emergence of smart streets, roads and even cities. Devices such as smart cameras have long been part of everyday life for many, as...

Night Vision Enabled Security Cameras Secretly Transfer Your Data

By Waqas A team of researchers from the Ben-Gurion University of the This is a post from HackRead.com Read the original post: Night Vision Enabled Security Cameras Secretly Transfer Your Data...

Night Vision Camera Simulation - MIT license, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Night Vision Camera Simulation published at the 'play' market has multiple vulnerabilities...

Night Vision Camera - Runtime privilege escalation, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Night Vision Camera published at the 'play' market has multiple vulnerabilities...

Belkin NetCam Wifi Camera Hardcoded Credentials

Exploit for hardware platform in category web applications Product: Product NetCam WiFi Camera With Night Vision, purchased August 2013 Summary: Live video stream is accessible with user/password of admin/admin. The user/password combination admin/admin cannot be changed by the user. This "featur...

Game On: Gamma Ray Scanners To Guard 'Most Technologically Secure' Super Bowl Ever

Gamma ray scanners? Night vision cameras? bomb-proof manhole covers? G-Men? It must be Super Bowl time again, and Marion County, Indiana says that they’ve gone where no other municipality has gone before: a permanent, $18 million regional operation center yes – ROC that will manage security at th...