Szuray: >> Iptv/h.264 Video Encoder Firmware >> 1.97 Security Vulnerabilities
An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can log in as root via the password that is hard-coded in the executable file.
CVSS Score
9.8
EPSS Score
0.003
Published
2020-10-06
An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can send crafted unauthenticated HTTP requests to exploit path traversal and pattern-matching programming flaws, and retrieve any file from the device's file system, including the configuration file with the cleartext administrative password.
CVSS Score
7.5
EPSS Score
0.237
Published
2020-10-06