VYPR

QD900

by ESCAM

CVEs (1)

  • CVE-2020-36871HigNov 26, 2025
    risk 0.57cvss epss 0.01

    ESCAM QD-900 WIFI HD cameras contain an unauthenticated configuration disclosure vulnerability in the /web/cgi-bin/hi3510/backup.cgi endpoint. The endpoint allows remote download of a compressed configuration backup without requiring authentication or authorization. The exposed…