CVE-2016-8731

Summary

Hard-coded FTP credentials (r:r) are included in the Foscam C1 running firmware 1.9.1.12. Knowledge of these credentials would allow remote access to any cameras found on the internet that do not have port 50021 blocked by an intermediate device.

Affected Software

VendorProductVersion RangeStatus
FoscanFoscam C1 WebcamFirmware Version 1.9.1.12affected

Weaknesses

  • password vulnerability

ADP Enrichment

CVE Program Container

Additional References

References