2 matches found
EUVD-2022-6043
Malicious code in bioql PyPI...
Arteco Web Client DVR/NVR Session Hijacking Vulnerability
The session identifier used by Arteco Web Client DVR/NVR is of an insufficient length and can be brute forced, allowing a remote attacker to obtain a valid session, bypass authentication, and disclose the live camera stream. !/usr/bin/env python3 Arteco Web Client DVR/NVR 'SessionId' Cookie Brute...