CVE-2019-7315
17.06.2019, 19:15
Genie Access WIP3BVAF WISH IP 3MP IR Auto Focus Bullet Camera devices through 3.x are vulnerable to directory traversal via the web interface, as demonstrated by reading /etc/shadow. NOTE: this product is discontinued, and its final firmware version has this vulnerability (4.x versions exist only for other Genie Access products).
| Vendor | Product | Version |
|---|---|---|
| genieaccess | wip3bvaf_firmware | 𝑥 ≤ 3.0 |
𝑥
= Vulnerable software versions