Foscam Opticam i5 Devices: Administrator Credentials Exposed in ONVIF Media GetStreamUri Response

Foscam Opticam i5 Devices: Administrator Credentials Exposed in ONVIF Media GetStreamUri Response

CVE-2018-19078 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The response to an ONVIF media GetStreamUri request contains the administrator username and password.

Learn more about our User Device Pen Test.