1 results (0.002 seconds)
CVSS: 7.7EPSS: 0%CPEs: 3EXPL: 1
CVSS: 7.7EPSS: 0%CPEs: 3EXPL: 1CVE-2022-38970
https://notcve.org/view.php?id=CVE-2022-38970
26 Sep 2022 — ieGeek IG20 hipcam RealServer V1.0 is vulnerable to Incorrect Access Control. The algorithm used to generate device IDs (UIDs) for devices that utilize Shenzhen Yunni Technology iLnkP2P suffers from a predictability flaw that allows remote attackers to establish direct connections to arbitrary devices. ieGeek IG20 hipcam RealServer versión V1.0, es vulnerable a un control de acceso incorrecto. El algoritmo usado para generar IDs de dispositivos (UIDs) para los dispositivos que usan Shenzhen Yunni Technology... • https://www.realinfosec.net/cybersecurity-news/iegeek-vulnerabilities-still-prevalent-in-2022-amazon-ft-ig20 • CWE-330: Use of Insufficiently Random Values •