CVE-2018-20050

Mishandling of an empty string on the Jooan JA-Q1H Wi-Fi camera with firmware 21.0.0.91 allows remote attackers to cause a denial of service (crash and reboot) via the ONVIF GetStreamUri method and GetVideoEncoderConfigurationOptions method.

MISC: https://github.com/iamweifan/jooan/blob/master/es_poc.py
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20050

9 years
245 countries
383k users
2247k calculations
Logo reolink.com
Logo www.power-shop.gr
Logo blog.camcloud.com
Logo www.inv-technology.com
Logo ru.kedacom.com
Logo secutek.cz