Foscam networked devices use the same hardcoded SSL private key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
References
Link | Resource |
---|---|
http://www.securityfocus.com/archive/1/540388/30/0/threaded | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2017-04-10 19:59
Updated : 2024-02-28 15:44
NVD link : CVE-2017-7648
Mitre link : CVE-2017-7648
CVE.ORG link : CVE-2017-7648
JSON object : View
Products Affected
foscam
- fi9851p
- fi9901ep
- fi9853ep
- r2
- c2
- fi9828p
- fi9928p
- fi9826p
- c1
- c1_lite
- fi9903p
- fi9800xe
CWE
CWE-798
Use of Hard-coded Credentials