PT-2021-9032 · Sannce · Sannce Smart Hd Wifi Security Camera
Dennis Van Warmerdam
+2
·
Published
2021-07-22
·
Updated
2024-07-30
·
CVE-2019-20467
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Sannce Smart HD Wifi Security Camera (affected versions not specified)
Description
An issue was discovered on Sannce Smart HD Wifi Security Camera devices, where a TELNET interface is available by default, although not advertised or functionally used. Two backdoor accounts,
root and default, exist on this interface, with the same usernames and passwords on all devices. Attackers can use these backdoor accounts to obtain access and execute code as root within the device.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sannce Smart Hd Wifi Security Camera