Foscam networked devices use the same hardcoded SSL private key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
References
Link | Resource |
---|---|
http://www.securityfocus.com/archive/1/540388/30/0/threaded | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-04-10 12:59
Updated : 2017-04-17 09:39
NVD link : CVE-2017-7648
Mitre link : CVE-2017-7648
JSON object : View
CWE
CWE-798
Use of Hard-coded Credentials
Products Affected
foscam
- fi9853ep
- fi9826p
- fi9903p
- fi9828p
- fi9928p
- fi9901ep
- fi9851p
- c1_lite
- r2
- c1
- c2
- fi9800xe