Tcprs1Plus

The web server of the device performs exchanges of sensitive information in clear text through an insecure protocol.

Published: 2025-10-31T14:19:48.833Z
Updated: 2025-11-03T19:11:41.770Z

Denial of service of the web server through specific requests to this protocol

Published: 2025-10-31T14:17:00.827Z
Updated: 2025-11-03T15:47:20.502Z

The web application is vulnerable to a so-called ‘clickjacking’ attack. In this type of attack, the vulnerable page is inserted into a page controlled by the attacker in order to deceive the victim. This deception can range from making the victim click on a button to making them enter their login credentials in a form that, a priori, appears legitimate.

Published: 2025-10-31T14:12:55.199Z
Updated: 2025-11-03T15:48:02.400Z

The equipment grants a JWT token for each connection in the timeline, but during an active valid session, a hijacking of the token can be done. This will allow an attacker with the token modify parameters of security, access or even steal the session without the legitimate and active session detecting it. The web server allows the attacker to reuse an old session JWT token while the legitimate session is active.

Published: 2025-10-31T13:42:32.743Z
Updated: 2025-11-03T15:51:03.421Z

The equipment initially can be configured using the manufacturer's application, by Wi-Fi, by the web server or with the manufacturer’s software. Using the manufacturer's software, the device can be configured via UDP. Analyzing this communication, it has been observed that any aspect of the initial configuration can be changed by means of the device's MAC without the need for authentication.

Published: 2025-10-31T14:23:06.442Z
Updated: 2025-11-03T19:06:16.313Z