CNNVD-202512-1117 Information

CNNVD ID

CNNVD-202512-1117

Related CVE

CVE-2021-47710

• CNNVD Published: 2025-12-09

Description (Chinese)

COMMAX Smart Home System是韩国COMMAX公司的一个智能家居系统。 COMMAX Smart Home System存在访问控制错误漏洞，该漏洞源于overview.asp端点存在明文凭据泄露问题，可能导致敏感信息泄露。

Description (English)

COMMAX Smart Home System is an intelligent home system for COMMAX in Korea. COMMAX Smart Home System has an error access control loophole, which arises from the disclosure of a certificate at the end point overview.asp and may lead to the disclosure of sensitive information.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

COMMAX

Published

2025-12-09

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/commax-smart-home-ruvie-cctv-bridge-dvr-service-rtsp-credentials-disclosure https://www.exploit-db.com/exploits/50208 https://www.commax.com https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5665.php https://access.redhat.com/security/cve/cve-2021-47710