← Voltar para CVEs
CVE-2018-12258
N/ADescricao
An issue was discovered on Momentum Axel 720P 5.1.8 devices. Custom Firmware Upgrade is possible via an SD Card. With physical access, an attacker can upgrade the firmware in under 60 seconds by inserting an SD card containing the firmware with name 'ezviz.dav' and rebooting.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado6/12/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
apollotechnologiesinc:momentum_axel_720papollotechnologiesinc:momentum_axel_720p_firmware
Referencias
https://rchase.com/downloads/momentum-iot-penetration-test-report.pdf(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.