| 标题 | FNKvision FNK-GU2 Wireless IP Camera Firmware version 40.1.7 and prior On-Chip Debug and Test Interface With Improper Access Control (C |
|---|
| 描述 | The FNKvision GU2 Wireless IP Camera has an unprotected serial interface accessible on the main PCB. An attacker with physical access can connect to this interface and gain a root shell by providing the username 'root', which bypasses password authentication and provides complete administrative control over the device's operating system. |
|---|
| 来源 | ⚠️ https://medium.com/@pundhapat/sqli-in-the-cloud-root-on-the-board-a-beginners-journey-into-iot-hacking-06efb2539a21 |
|---|
| 用户 | 0xHasta (UID 86257) |
|---|
| 提交 | 2025-07-02 20時19分 (10 月前) |
|---|
| 管理 | 2025-07-07 15時19分 (5 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 315162 [FNKvision FNK-GU2 直到 40.1.7 UART Interface Local Privilege Escalation] |
|---|
| 积分 | 18 |
|---|