CVE-2018-12674

The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) stores the username and password within the cookies of a session. If an attacker gained access to these session cookies, it would be possible to gain access to the username and password of the logged-in account.

MISC: https://www.bishopfox.com/news/2018/10/sv3c-l-series-hd-camera-multiple-vulnerabilities/
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12674

14 years
256 countries
683k users
4525k calculations
Logo www.a1securitycameras.com
Logo reolink.com
Logo blog.camcloud.com
Logo www.elsec.cz
Logo www.inv-technology.com
Logo zoneway.cz