MidnightBSD

Advisories for annigroup

CVE-2018-10770 MEDIUM

download.rsp on ShenZhen Anni "5 in 1 XVR" devices allows remote attackers to download the configuration (without a login) to discover the password.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
annigroup 5_in_1_xvr_firmware -