PT-2025-2423 · Nedis · Nedis Smartlife Video Doorbell+1
Martin Siklosi
+1
·
Published
2025-02-03
·
Updated
2025-02-03
·
CVE-2024-34896
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Nedis SmartLife Video Doorbell (WIFICDP10GY) version 1.4.0
Nedis SmartLife IOS version 1.4.0
Description:
The issue causes users who are disconnected from a previous peer-to-peer connection with the device to still have access to the live video feed.
Recommendations:
For Nedis SmartLife Video Doorbell (WIFICDP10GY) version 1.4.0, consider restricting access to the live video feed until a patch is available.
For Nedis SmartLife IOS version 1.4.0, avoid using the app to access the live video feed of the Nedis SmartLife Video Doorbell until the issue is resolved.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Nedis Smartlife Ios
Nedis Smartlife Video Doorbell