Xiongmai Camera XM-JPR2-LX V4.02.R12.A6420987.10002.147502.00000 is vulnerable to account takeover.
References
Link | Resource |
---|---|
https://github.com/ChandlerChin/XiongmaiCamera/blob/main/Account%20takeover%20with%20traffic%20monitoring%20exploitation%20in%20XM-JPR2-LX%20device.pdf | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2022-11-13 18:15
Updated : 2022-11-16 10:29
NVD link : CVE-2021-38827
Mitre link : CVE-2021-38827
JSON object : View
CWE
CWE-294
Authentication Bypass by Capture-replay
Products Affected
xiongmaitech
- xm-jpr2-lx
- xm-jpr2-lx_firmware