CVSS: 9.8EPSS: 3%CPEs: 2EXPL: 2CVE-2017-8227 – Amcrest IPM-721S Credential Disclosure / Privilege Escalation
https://notcve.org/view.php?id=CVE-2017-8227
07 Jun 2019 — Amcrest IPM-721S V2.420.AC00.16.R.20160909 devices have a timeout policy to wait for 5 minutes in case 30 incorrect password attempts are detected using the Web and HTTP API interface provided by the device. However, if the same brute force attempt is performed using the ONVIF specification (which is supported by the same binary) then there is no account lockout or timeout executed. This can allow an attacker to circumvent the account protection mechanism and brute force the credentials. If the firmware ver... • https://packetstorm.news/files/id/153224 • CWE-254: 7PK - Security Features •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2018-16546
https://notcve.org/view.php?id=CVE-2018-16546
05 Sep 2018 — Amcrest networked devices use the same hardcoded SSL private key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation, as demonstrated by Amcrest_IPC-HX1X3X-LEXUS_Eng_N_AMCREST_V2.420.AC01.3.R.20180206. Los dispositivos en red de Amcrest emplean la misma clave privada SSL embebida en diferentes instalaciones de cliente, lo que permite que atacantes remotos superen los mecanismos de... • https://seclists.org/bugtraq/2018/Sep/6 • CWE-798: Use of Hard-coded Credentials •