Skip to main content

5 In 1 Xvr Firmware

1 CVEs product

Monthly

CVE-2018-10770 CRITICAL POC Act Now

download.rsp on ShenZhen Anni "5 in 1 XVR" devices allows remote attackers to download the configuration (without a login) to discover the password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure 5 In 1 Xvr Firmware
NVD GitHub
CVSS 3.0
9.8
EPSS
1.6%
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

download.rsp on ShenZhen Anni "5 in 1 XVR" devices allows remote attackers to download the configuration (without a login) to discover the password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure 5 In 1 Xvr Firmware
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy