A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request.

A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request.

An authentication bypass vulnerability could allow an attacker to access API functions without authentication.

Logs storing credentials are insufficiently protected and can be decoded through the use of open source tools.

Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a replay attack to replicate calls.

Sensitive customer information is stored in the device without encryption.

Utilizing default credentials, an attacker is able to log into the camera's operating system which could allow changes to be made to the operations or shutdown the camera requiring a physical reboot of the system.

An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device.

An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving the hard disk of the product as the data is stored in clear text.

The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes.