An information leak exists in Wanscam's HW0021 network camera that allows an unauthenticated remote attacker to recover the administrator username and password via an ONVIF GetSnapshotUri request.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,CWE-522,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| wanscam | hw0021_firmware | 11.6.5.1.1-20161213 |
There exists a partial Denial of Service vulnerability in Wanscam HW0021 IP Cameras. An attacker could craft a malicious POST request to crash the ONVIF service on such a device.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| wanscam | hw0021_firmware | - |