CVE-2018-25139

FLIR AX8 Thermal Camera 1.32.16 Unauthenticated RTSP Stream Disclosure

CVSS 8.7 HIGHEPSS 0.4%CWE-306

FLIR AX8 Thermal Camera 1.32.16 contains an unauthenticated vulnerability that allows remote attackers to access live video streams without credentials. Attackers can directly connect to the RTSP stream using tools like VLC or FFmpeg to view and record thermal camera footage.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Productos afectados

FLIR Systems, Inc. · FLIR AX8 Thermal Camera

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.exploit-db.com/exploits/45606 https://www.flir.com https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5492.php