| Title | Hipcam N/A N/A Information Disclosure |
|---|
| Description | The Hipcam device is vulnerable to unauthorized access, allowing an attacker to retrieve the MAC address of the device without proper authentication or authorization. By sending a specific HTTP request to the device, an attacker can obtain sensitive information about the device, which could be used for further exploitation or unauthorized access.
This vulnerability poses a moderate risk to the security of the Hipcam device and its users. Although the MAC address alone may not directly compromise the device or its network, it can be used as part of a reconnaissance phase in a larger attack. Furthermore, unauthorized access to device information undermines the confidentiality and integrity of the device's data, affecting over 722,000 devices on the Internet. |
|---|
| Source | ⚠️ https://netsecfish.notion.site/Unauthorized-Access-to-MAC-Address-in-Hipcam-Device-a9a8daeeda954e83af847eb27805dc99?pvs=4 |
|---|
| User | netsecfish (UID 64568) |
|---|
| Submission | 05/11/2024 04:28 AM (1 Year ago) |
|---|
| Moderation | 05/18/2024 09:08 AM (7 days later) |
|---|
| Status | Accepted |
|---|
| VulDB Entry | 265078 [Hipcam Device up to 20240511 MAC Address /log/wifi.mac information disclosure] |
|---|
| Points | 17 |
|---|