CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-15236

Tiandy IP cameras 5.56.17.120 do not properly restrict a certain proprietary protocol, which allows remote attackers to read settings via a crafted request to TCP port 3001, as demonstrated by config* files and extendword.txt.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.044

EPSS Ranking 88.6%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://blogs.securiteam.com/index.php/archives/3444
https://blogs.securiteam.com/index.php/archives/3444

Products affected by CVE-2017-15236

Tiandy » Tiandy Ip Camera » Version: N/A

cpe:2.3:h:tiandy:tiandy_ip_camera:-
Tiandy » Tiandy Ip Camera Firmware » Version: 5.56.17.120

cpe:2.3:o:tiandy:tiandy_ip_camera_firmware:5.56.17.120

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15236

Products

Pricing

Contact Us