Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
cgi-bin/mft/wireless_mft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026 with firmware 1.43 21.08.2014, AirLive MD-3025 with firmware 1.81 21.08.2014, AirLive WL-2000CAM with firmware LM.1.6.18 14.10.2011, and AirLive POE-200CAM v2 with firmware LM.1.6.17.01 uses hard-coded credentials in the embedded Boa web server, which allows remote attackers to obtain user credentials via crafted HTTP requests.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款的OvisLink产品操作系统命令注入漏洞
Vulnerability Description
OvisLin AirLive BU-2015等都是欧立科技(OvisLink)公司的网络摄像机产品。 多款的OvisLink产品中的cgi-bin/mft/wireless_mft.cgi文件存在操作系统命令注入漏洞,该漏洞源于程序在嵌入的Boa Web服务器中使用了硬编码证书。远程攻击者可通过发送特制的HTTP请求利用该漏洞获取用户证书。以下版本和产品受到影响:使用1.03.18 16.06.2014版本固件的AirLive BU-2015;使用1.43 21.08.2014版本固件的AirLive
CVSS Information
N/A
Vulnerability Type
N/A