FNKvision Y215 CCTV Camera Hard-Coded Root Credentials Vulnerability

A vulnerability exists in the FNKvision Y215 CCTV Camera running firmware version 10.194.120.40. The issue arises from hard-coded root credentials embedded in multiple binaries, including the encoder and wifidaemon. These credentials are used to automatically generate the /etc/passwd file, granting root access through a shell. This vulnerability requires local access to exploit, but the exploit is publicly available.

Impact

Exploitation of this vulnerability allows for unauthorized root access on the affected camera, enabling full control over the device.

Reproduction

The vulnerability can be reproduced by accessing the camera's firmware, either through a firmware dump or via the UART connection. The hard-coded credentials can be extracted from the firmware and validated through the serial console. Once the credentials are obtained, they can be used to log in as root via the UART connection.