Vulnerabilities > Ishekar > Endoscope Camera Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-17 | CVE-2017-10724 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ishekar Endoscope Camera Firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that an attacker connected to the device Wi-Fi SSID can exploit a memory corruption issue and execute remote code on the device. | 6.5 |
| 2019-06-17 | CVE-2017-10723 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ishekar Endoscope Camera Firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that an attacker connected to the device Wi-Fi SSID can exploit a memory corruption issue and execute remote code on the device. | 6.5 |
| 2019-06-17 | CVE-2017-10722 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ishekar Endoscope Camera Firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that the desktop application used to connect to the device suffers from a stack overflow if more than 26 characters are passed to it as the Wi-Fi password. | 4.6 |
| 2019-06-17 | CVE-2017-10721 | Improper Access Control vulnerability in Ishekar Endoscope Camera Firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that the device has Telnet functionality enabled by default. | 4.0 |
| 2019-06-17 | CVE-2017-10720 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ishekar Endoscope Camera Firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that the desktop application used to connect to the device suffers from a stack overflow if more than 26 characters are passed to it as the Wi-Fi name. | 4.6 |
| 2019-06-17 | CVE-2017-10719 | Information Exposure vulnerability in Ishekar Endoscope Camera Firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that the device has default Wi-Fi credentials that are exactly the same for every device. | 4.0 |
| 2019-06-17 | CVE-2017-10718 | Credentials Management vulnerability in Ishekar Endoscope Camera Firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that any malicious user connecting to the device can change the default SSID and password thereby denying the owner an access to his/her own device. | 4.0 |