Arbitrary Code Execution Vulnerability in VIVOTEK FD8177 Devices via ONVIF Interface

Arbitrary Code Execution Vulnerability in VIVOTEK FD8177 Devices via ONVIF Interface

CVE-2018-14770 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

VIVOTEK FD8177 devices before XXXXXX-VVTK-xx06a allow remote attackers to execute arbitrary code (issue 1 of 2) via the ONVIF interface, (/onvif/device_service).

Learn more about our Web Application Penetration Testing UK.