VelotiSmart WiFi B-380 Camera - Directory Traversal Vulnerability

ID 1337DAY-ID-30723
Type zdt
Reporter Miguel Mendez Z
Modified 2018-07-16T00:00:00


Exploit for hardware platform in category web applications

                                            Title: Vulnerability in VelotiSmart Wifi - Directory Traversal
Date: 12-07-2018
Scope: Directory Traversal
Platforms: Unix
Author: Miguel Mendez Z
Vendor: VelotiSmart
Version: B380
CVE: CVE-2018–14064
Vulnerability description
- The vulnerability that affects the device is LFI type in the uc-http service 1.0.0. What allows to obtain information of configurations, wireless scanned networks, sensitive directories, etc. Of the device.
Vulnerable variable:
Exploit link:

# [2018-07-16]  #