Xiongmai Technology · Netsurveillance Web · CVE-2017-16725
**Name of the Vulnerable Software and Affected Versions**
Xiongmai Technology IP Cameras and DVRs (affected versions not specified)
**Description**
A Stack-based Buffer Overflow issue has been discovered, which may allow an attacker to execute code remotely or crash the device. After rebooting, the device restores itself to a more vulnerable state in which Telnet is accessible. The vulnerability is related to the NetSurveillance Web interface.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.