MidnightBSD

Advisories for faleemi

CVE-2017-14743 HIGH

Faleemi FSC-880 00.01.01.0048P2 devices allow unauthenticated SQL injection via the Username element in an XML document to /onvif/device_service, as demonstrated by reading the admin password.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
faleemi fsc-880_firmware 00.01.01.0048p2