CVE-2018-20050

Mishandling of an empty string on the Jooan JA-Q1H Wi-Fi camera with firmware 21.0.0.91 allows remote attackers to cause a denial of service (crash and reboot) via the ONVIF GetStreamUri method and GetVideoEncoderConfigurationOptions method.

MISC: https://github.com/iamweifan/jooan/blob/master/es_poc.py
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20050

8 years
232 countries
223k users
1423k calculations
Logo secutek.cz
Logo www.power-shop.gr
Logo www.inv-technology.com
Logo www.kelcom.cz
Logo www.eleksys.cz
Logo blog.camcloud.com