VYPR

IPC-B850

by Anpviz

CVEs (1)

  • CVE-2024-35341HigMay 28, 2024
    risk 0.49cvss 7.5epss 0.00

    Certain Anpviz products allow unauthenticated users to download the running configuration of the device via a HTTP GET request to /ConfigFile.ini or /config.xml URIs. This configuration file contains usernames and encrypted passwords (encrypted with a hardcoded key common to all…