Wi-Fi Passphrase Visibility Vulnerability in Alecto DVC-215IP Camera Version 63.1.1.173 and Below

Wi-Fi Passphrase Visibility Vulnerability in Alecto DVC-215IP Camera Version 63.1.1.173 and Below

CVE-2022-24610 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Settings/network settings/wireless settings on the Alecto DVC-215IP camera version 63.1.1.173 and below shows the Wi-Fi passphrase hidden, but by editing/removing the style of the password field the password becomes visible which grants access to an internal network connected to the camera.

Learn more about our Internal Network Penetration Testing.