Critical severity9.8NVD Advisory· Published Apr 25, 2017· Updated May 13, 2026

CVE-2017-8225

Description

On Wireless IP Camera (P2P) WIFICAM devices, access to .ini files (containing credentials) is not correctly checked. An attacker can bypass authentication by providing an empty loginuse parameter and an empty loginpas parameter in the URI.

Affected products

Wificam/Wireless Ip Camera \(p2p\) Firmware
cpe:2.3:o:wificam:wireless_ip_camera_\(p2p\)_firmware:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2017/Mar/23nvdExploitMailing ListThird Party Advisory
pierrekim.github.io/blog/2017-03-08-camera-goahead-0day.htmlnvdExploitThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.047
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000