VYPR
Vendor

Anpviz

Products
6
CVEs
4
Across products
10
Status
Private

Products

6

Recent CVEs

4
  • CVE-2024-35344CriMay 28, 2024
    risk 0.64cvss 9.9epss 0.00

    Certain Anpviz products contain a hardcoded cryptographic key stored in the firmware of the device. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380, IPC-D880, IPC-D280, IPC-D3180, MC800N, YM500L, YM800N_N2, YMF50B, YM800SV2, YM500L8,…

  • CVE-2024-35343CriMay 28, 2024
    risk 0.64cvss 9.8epss 0.00

    Certain Anpviz products allow unauthenticated users to download arbitrary files from the device's filesystem via a HTTP GET request to the /playback/ URI. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380, IPC-D880, IPC-D280,…

  • CVE-2024-35341HigMay 28, 2024
    risk 0.49cvss 7.5epss 0.00

    Certain Anpviz products allow unauthenticated users to download the running configuration of the device via a HTTP GET request to /ConfigFile.ini or /config.xml URIs. This configuration file contains usernames and encrypted passwords (encrypted with a hardcoded key common to all…

  • CVE-2024-35342MedMay 28, 2024
    risk 0.30cvss 4.6epss 0.00

    Certain Anpviz products allow unauthenticated users to modify or disable camera related settings such as microphone volume, speaker volume, LED lighting, NTP, motion detection, etc. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380,…