Vulnerabilities > Faleemi > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-09-26 CVE-2017-14743 SQL Injection vulnerability in Faleemi Fsc-880 Firmware 00.01.01.0048P2
Faleemi FSC-880 00.01.01.0048P2 devices allow unauthenticated SQL injection via the Username element in an XML document to /onvif/device_service, as demonstrated by reading the admin password.
network
faleemi CWE-89
critical
9.3