Practecol · Guardzilla All-In-One Video Security System · CVE-2018-5560
Name of the Vulnerable Software and Affected Versions:
Practecol's Guardzilla All-In-One Video Security System (affected versions not specified)
Description:
The issue is related to a static, hard-coded credential used in the cloud-based storage system of the Guardzilla device. This allows an attacker to access the private data of all users of the device.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.