Runofast · Runofast Indoor Security Camera For Baby Monitor · CVE-2024-46959
**Name of the Vulnerable Software and Affected Versions**
runofast Indoor Security Camera for Baby Monitor (affected versions not specified)
**Description**
The issue concerns a default password set as `password` for the root account, allowing unauthorized access to the "/stream1" URI via the rtsp:// protocol to receive the video and audio stream.
**Recommendations**
For the runofast Indoor Security Camera for Baby Monitor, change the default password of the root account to a strong and unique password to prevent unauthorized access.
As a temporary workaround, consider restricting access to the "/stream1" URI until a more secure configuration is implemented.