How severe is CVE-2018-17915?

CVE-2018-17915 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2018-17915

Name: xmeye_p2p_cloud_server
Author: xiongmaitech

9.8CRITICAL

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server do not encrypt all device communication. This includes the XMeye service and firmware update communication. This could allo

Veröffentlicht: 10/10/2018Aktualisiert: 11/21/2024

Beschreibung

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server do not encrypt all device communication. This includes the XMeye service and firmware update communication. This could allow an attacker to eavesdrop on video feeds, steal XMeye login credentials, or impersonate the update server with malicious update code.

KI-AnalyseKI-gestützt

Betroffene Produkte

xiongmaitechxmeye_p2p_cloud_server

Referenzen

https://ics-cert.us-cert.gov/advisories/ICSA-18-282-06
Third Party AdvisoryUS Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-282-06
Third Party AdvisoryUS Government Resource