| 제목 | Faraday Technology(Grain-Media) DVR GM828x, GM8181 Exposure of Sensitive System Information to an Unauthorized Cont |
|---|
| 설명 | The Faraday Technology (Grain-Media) DVRs are affected by a security vulnerability that allows unauthorized disclosure of sensitive information. This is due to the exposure of the command_port.ini file over an unprotected HTTP channel. An attacker could exploit this vulnerability to engage in further unauthorized activities, such as accessing DVR (detailed in Submit #324403), affecting over 27,000 Internet-connected devices. |
|---|
| 원천 | ⚠️ https://netsecfish.notion.site/Information-Disclosure-in-Faraday-Technology-Grain-Media-GM828x-GM8181-DVR-via-Unauthenticated-Acc-3d184791c8d7405ba9d6a49e7a5bd918?pvs=4 |
|---|
| 사용자 | netsecfishfish (UID 68318) |
|---|
| 제출 | 2024. 04. 29. PM 02:42 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 05. 07. AM 06:57 (8 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 263306 [Faraday GM8181/GM828x 까지 20240429 /command_port.ini 정보 공개] |
|---|
| 포인트들 | 17 |
|---|