3 matches found
CVE-2017-3186
CVE-2017-3186 affects ACTi cameras (D, B, I, E series) with firmware A1D-500-V6.11.31-AC, which uses non-random default admin credentials across all devices, enabling a remote attacker to take complete control of the device. Related issues include CVE-2017-3184 (factory-reset access) and CVE-2017...
CVE-2017-3185
ACTi ACTI D/B/I/E series cameras with firmware A1D-500-V6.11.31-AC expose user credentials and account names via GET requests in the web interface, allowing information disclosure through browser history, logs, and refs. Concrete affected components: web application GET handling that processes se...
CVE-2017-3184
ACTi D/B/I/E series cameras with firmware A1D-500-V6.11.31-AC expose a factory-reset page via http://x.x.x.x/setup/setup_maintain_firmware-default.html, allowing unauthenticated, remote trigger of a factory reset and potential use of default credentials. This is linked to CVE-2017-3186, which sta...