Vulnerabilities > Faleemi > FSC 880 > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-26 | CVE-2017-14743 | SQL Injection vulnerability in Faleemi Fsc-880 Firmware 00.01.01.0048P2 Faleemi FSC-880 00.01.01.0048P2 devices allow unauthenticated SQL injection via the Username element in an XML document to /onvif/device_service, as demonstrated by reading the admin password. | 9.3 |