VYPR
High severity8.1NVD Advisory· Published Sep 26, 2017· Updated Jun 17, 2026

CVE-2017-14743

CVE-2017-14743

Description

Faleemi FSC-880 00.01.01.0048P2 devices allow unauthenticated SQL injection via the Username element in an XML document to /onvif/device_service, as demonstrated by reading the admin password.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.