CVE-2020-28999

An issue was discovered in Apexis Streaming Video Web Application on Geeni GNC-CW013 doorbell 1.8.1 devices. A remote attacker can take full control of the camera with a high-privileged account. The vulnerability exists because a static username and password are compiled into a shared library (libhipcam.so) used to provide the streaming camera service.

MISC: https://gist.github.com/tj-oconnor/74f9ebbad668f3a7ce31a968452190d7
MISC: https://support.mygeeni.com/hc/en-us
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28999

14 years
256 countries
683k users
4525k calculations
Logo www.kelcom.cz
Logo www.cctvforum.com
Logo www.systemy-stech.cz
Logo www.a1securitycameras.com
Logo www.power-shop.gr
Logo ipcamtalk.com