CVE-2018-25138

Name of the Vulnerable Software and Affected Versions FLIR AX8 Thermal Camera version 1.32.16

Description The device contains hard-coded SSH and web panel credentials that cannot be modified through standard camera operations. This allows attackers to use predefined username and password combinations to gain unauthorized shell access and log into multiple camera interfaces.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.