CNNVD-202601-1636 Information

CNNVD ID

CNNVD-202601-1636

Related CVE

CVE-2025-66051

• CNNVD Published: 2026-01-09

Description (Chinese)

Vivotek IP7137是中国晶睿通讯（Vivotek）公司的一款IP摄像头。 Vivotek IP7137 0200a版本存在路径遍历漏洞，该漏洞源于经过身份验证的攻击者可通过直接HTTP请求访问Web根目录之外的资源，可能导致路径遍历。

Description (English)

Vivotek IP7137 is an IP camera of the Chinese company Vivotek. Vivotek IP7137 0200a has a loophole in its path, which stems from the fact that an identified assailant can request access to resources outside the Web root directory through direct HTTP, which may result in a path pass.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

晶睿通讯

Published

2026-01-09

Last Modified

2026-02-24

References

https://cert.pl/posts/2026/01/CVE-2025-66049