How severe is CVE-2018-17915?

CVE-2018-17915 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2018-17915

Name: xmeye_p2p_cloud_server
Author: xiongmaitech

9.8CRITICAL

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server do not encrypt all device communication. This includes the XMeye service and firmware update communication. This could allo

게시됨: 10/10/2018업데이트됨: 11/21/2024

설명

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server do not encrypt all device communication. This includes the XMeye service and firmware update communication. This could allow an attacker to eavesdrop on video feeds, steal XMeye login credentials, or impersonate the update server with malicious update code.

AI 분석AI 기반

영향받는 제품

xiongmaitechxmeye_p2p_cloud_server

참조

https://ics-cert.us-cert.gov/advisories/ICSA-18-282-06
Third Party AdvisoryUS Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-282-06
Third Party AdvisoryUS Government Resource