CVE-2019-20466

An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. A local attacker with the "default" account is capable of reading the /etc/passwd file, which contains a weakly hashed root password. By taking this hash and cracking it, the attacker can obtain root rights on the device.

MISC: https://www.eurofins-cybersecurity.com/news/connected-devices-baby-monitors-part-2/
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20466

14 years
257 countries
698k users
4596k calculations
Logo reolink.com
Logo www.eleksys.cz
Logo www.inv-technology.com
Logo secutek.cz
Logo ru.kedacom.com
Logo sectech.co.nz