Primary

Context

Trivision Camera NC227WF Authentication Bypass Vulnerability Allowing Credential Retrieval

Vulnerability

An authentication bypass vulnerability has been identified in the Trivision Camera NC227WF, version 5.8.0. This vulnerability allows attackers to retrieve administrator credentials in cleartext. Exploitation involves sending a request to the server's '/en/player/activex_pal.asp' endpoint with random credentials. If the application successfully authenticates, the administrator's credentials can be extracted.

Impact

Exploitation of this vulnerability allows for unauthorized access to administrator credentials, which could lead to further exploitation of the camera or its network.

Reproduction

To reproduce this vulnerability, send a request to the camera's server using curl. Include random credentials in the request. Target the '/en/player/activex_pal.asp' endpoint. If the application authenticates successfully, the administrator's credentials will be returned in cleartext.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.7

remediation

0.0

relevance

0.0

threat

1.6

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.7

remediation

0.0

relevance

0.0

threat

1.6

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Trivision Camera NC227WF Authentication Bypass Vulnerability Allowing Credential Retrieval

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating