The Telnet service of Rubetek RV-3406, RV-3409, and RV-3411 cameras (firmware versions v342, v339) can allow a remote attacker to gain access to RTSP and ONFIV services without authentication. Thus, the attacker can watch live streams from the camera, rotate the camera, change some settings (brightness, clarity, time), restart the camera, or reset it to factory settings.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/jet-pentest/CVE-2020-25747 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-09-25T03:15:59
Updated: 2024-08-04T15:40:36.924Z
Reserved: 2020-09-18T00:00:00
Link: CVE-2020-25747
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-09-25T04:23:05.027
Modified: 2024-11-21T05:18:38.827
Link: CVE-2020-25747
Redhat
No data.