Camera Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:uniview:camera_firmware:-:*:*:*:*:*:*:*
part: o version: - update: *
| Vendor | Uniview (5f51fa95-1439-5fa9-9f22-3f353c5c361a) |
|---|---|
| Product | Camera Firmware (2c2da2e9-5726-51d0-bcc4-8ed0faa3a8e9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-45039 |
vulnerable | 2026-06-08 05:36:47.715182 |
Details available
Multiple models of the Uniview IP Camera (e.g., IPC_G6103 B6103.16.10.B25.201218, IPC_G61, IPC21, IPC23, IPC32, IPC36, IPC62, and IPC_HCMN) offer an undocumented UDP service on port 7788 that allows a remote unauthenticated attacker to overflow an internal buffer and achieve code execution. By using this buffer overflow, a remote attacker can start the telnetd service. This service has a hardcoded default username and password (root/123456). Although it has a restrictive shell, this can be easily bypassed via the built-in ECHO shell command.
Published: 2023-05-31T00:00:00.000Z
Updated: 2025-01-10T16:32:47.577Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.