Submit #332785: Hipcam N/A N/A Information Disclosureinfo

TitleHipcam N/A N/A Information Disclosure
DescriptionThe Hipcam device is vulnerable to unauthorized access, allowing an attacker to retrieve the MAC address of the device without proper authentication or authorization. By sending a specific HTTP request to the device, an attacker can obtain sensitive information about the device, which could be used for further exploitation or unauthorized access. This vulnerability poses a moderate risk to the security of the Hipcam device and its users. Although the MAC address alone may not directly compromise the device or its network, it can be used as part of a reconnaissance phase in a larger attack. Furthermore, unauthorized access to device information undermines the confidentiality and integrity of the device's data, affecting over 722,000 devices on the Internet.
Source⚠️ https://netsecfish.notion.site/Unauthorized-Access-to-MAC-Address-in-Hipcam-Device-a9a8daeeda954e83af847eb27805dc99?pvs=4
Usernetsecfish (ID 64568)
Submission05/11/2024 04:28 AM (2 months ago)
Moderation05/18/2024 09:08 AM (7 days later)
StatusAccepted
VulDB Entry265078

Do you know our Splunk app?

Download it now for free!