216.73.216.170

CVE-2025-50777

· Published 30/07/2025 19:15 · Modified 31/07/2025 18:42

Labels: CVE-2025-50777 2025-07-30CVE-2025-50777CWE-284[email protected]

Essential information

Published
30/07/2025 19:15
Modified
31/07/2025 18:42
Author
Creator
CVSS
7.8 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

The firmware of the AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera (version V1.00.02) contains an Incorrect Access Control vulnerability that allows local attackers to gain root shell access. Once accessed, the device exposes critical data including Wi-Fi credentials and ONVIF service credentials stored in plaintext, enabling further compromise of the network and connected systems.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
aziot / 2mp full hd smart wifi cctv home security camera cpe:2.3:a:aziot:2mp_full_hd_smart_wifi_cctv_home_security_camera:1.00.02:*:*:*:*:*:*:*

References