CVE-2018-17240

There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an unauthenticated attacker to exfiltrate sensitive information from the network configuration (e.g., username and password).

MISC: https://github.com/BBge/CVE-2018-17240
MISC: https://github.com/BBge/CVE-2018-17240/blob/main/exploit.py
MISC: https://www.bbge.org/file/exploit.py
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17240

11 years
254 countries
621k users
4139k calculations