Sergey Zelensky

**Name of the Vulnerable Software and Affected Versions** Rubetek RV-3406, RV-3409, and RV-3411 (affected versions not specified) **Description** The issue is related to insufficient authentication in the Telnet service of the Wi-Fi camera's firmware, allowing a remote attacker to gain unauthorized access to RTSP and ONFIV services. This access enables the attacker to watch live streams from the camera, change camera settings, rotate the camera, restart it, or reset it to factory settings. **Recommendations** For Rubetek RV-3406, RV-3409, and RV-3411, consider disabling the Telnet service until a patch is available to prevent unauthorized access. Restrict access to RTSP and ONFIV services to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Rubetek RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) **Description** A Cleartext Transmission issue allows an attacker to intercept and modify video data from the camera, as it is transmitted in an unencrypted form. The attacker can also modify responses from NTP and RTSP servers, forcing the camera to use the changed values. This issue is related to the lack of protection for transmitted data. **Recommendations** For firmware versions v342 and v339, consider disabling the transmission of video data until a patch is available to encrypt the data. Restrict access to the camera's network to minimize the risk of exploitation. Avoid using the camera's Wi-Fi functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Rubetek cameras RV-3406, RV-3409, and RV-3411 firmware versions v342, v339 **Description** The issue is related to the Telnet service of the affected cameras, which allows a remote attacker to gain full control of the device using a high-privileged account. This is due to a system account having a default and static password that cannot be changed via standard functionality. The Telnet service itself cannot be disabled. **Recommendations** For firmware versions v342 and v339, consider disabling the Telnet service as a temporary workaround, if possible, until a patch is available. However, since the Telnet service cannot be disabled and the password cannot be changed, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** OLIMPOKS versions under 3.3.39 **Description** The issue allows a remote attacker to inject malicious JavaScript payload into a victim's browser, potentially stealing administrator cookies, influencing HTML content, and performing phishing attacks. This affects over 3000 organizations across various sectors. The vulnerability is related to the lack of protection for the web page structure, allowing an attacker to execute arbitrary code. **Recommendations** For versions under 3.3.39, update to version 3.3.39 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable application to minimize the risk of exploitation.