o EDrhyme Co.,Ltd released security update to address Information Exposure vulnerability in QCP 200W (IP camera)
|Improper Access Control
||exposure of real-time
o Real-time image information exposure is caused by insufficient authentication for activated RTSP port.
o This vulnerability could allow to remote attackers to send the RTSP requests using ffplay command and lead to leakage a live image.
□ Affected Product
||No version information
o To address this vulnerability, DErhyme Co., Ltd deploys application automatically updates included default RTSP port blocking and app account security enhancements.
o Thanks to Jo Hyungeun for reporting this vulnerability.
□ 작성 : 침해사고분석단 취약점분석팀