Vivotek IP Camera Firmware Unauthorized Access Vulnerability

By GIXnews

A vulnerability in Vivotek IP Cameras could allow an unauthenticated, remote attacker to perform unauthorized actions on a targeted device.

The vulnerability is due to an undisclosed condition that exists within the affected software. An attacker could exploit this vulnerability by sending a request that submits malicious input to the targeted device. A successful exploit could allow the attacker to modify or delete content, perform unauthorized functions, or take over administration of the targeted device without permission checks.

Vivotek has confirmed the vulnerability and released software updates.

Security Impact Rating: Critical

CVE: CVE-2019-10256

Source:: Cisco Multivendor Vulnerability Alerts