CNNVD-202511-2834 Information

CNNVD ID

CNNVD-202511-2834

Related CVE

CVE-2020-36873

• CNNVD Published: 2025-11-26

Description (Chinese)

Astak CM-818T3是Astak公司的一款无线安全摄像头。 Astak CM-818T3存在访问控制错误漏洞，该漏洞源于/web/cgi-bin/hi3510/backup.cgi端点未经验证即可远程下载压缩配置备份，可能导致摄像头或连接的网络进一步被破解。

Description (English)

Astak CM-818T3 is a wireless security camera of Astak. Astak CM-818T3 has access control error loopholes that originate from/web/cgi-bin/hi3510/backup.cgi endpoints that can be downloaded remotely to compress configuration backups without authentication, which may lead to further breakdown of cameras or connected networks.

Hazard Level

Medium

Vulnerability Type

访问控制错误

Affected Vendor

Astak

Published

2025-11-26

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/astak-cm818t3-unauthenticated-config-disclosure https://packetstorm.news/files/id/156532/ https://access.redhat.com/security/cve/cve-2020-36873