Go back

PTZOptics NDI and SDI Cameras /cgi-bin/param.cgi Insufficient Authentication

severity
critical
date
Affecting
  • PTZOptics PT30X-SDI before 6.3.40

  • PTZOptics PT30X-NDI-xx-G2 before 6.3.40

  • Other white-label AV equipment based on ValueHD Corporation PTZ Camera Firmware

CVE
CVE-2024-8956
CVE type
Improper Authorization
CVSS
9.1
CVSS V3 Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Credit
Konstantin Lazarev of GreyNoise