High severityNVD Advisory· Published Nov 12, 2025· Updated Apr 15, 2026

CVE-2016-15055

Description

JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model) contain a directory traversal vulnerability in the checkcgi endpoint that accepts a user-controlled file parameter. An unauthenticated remote attacker can leverage this vulnerability to read arbitrary files on the device.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

pro.jvc.com/prof/attributes/tech_desc.jspnvd
web.archive.org/web/20170713051843/http://www.black-rose.ml/2016/08/analyzing-security-cameras-products.htmlnvd
www.exploit-db.com/exploits/40282nvd
www.vulncheck.com/advisories/jvc-vnt-ip-camera-directory-traversal-via-check-cginvd

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000