High severity7.5NVD Advisory· Published Oct 11, 2017· Updated May 13, 2026

CVE-2017-15236

Description

Tiandy IP cameras 5.56.17.120 do not properly restrict a certain proprietary protocol, which allows remote attackers to read settings via a crafted request to TCP port 3001, as demonstrated by config* files and extendword.txt.

Affected products

Tiandy/Tiandy Ip Camera Firmware
cpe:2.3:o:tiandy:tiandy_ip_camera_firmware:5.56.17.120:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blogs.securiteam.com/index.php/archives/3444nvdExploitIssue TrackingThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.004
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000