What is CVE-2017-8229?

CVE-2017-8229 is a vulnerability in N/a. Published 2019-07-03.

Is CVE-2017-8229 known to be exploited?

14 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2017-8229

Amcrest IPM-721S V2.420.AC00.16.R.20160909 devices allow an unauthenticated attacker to download the administrative credentials. If the firmware version V2.420.AC00.16.R 9/9/2016 is dissected using binwalk tool, one obtains a _user-x.squas…

EPSS: 0.929 (99.8th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

0day404/vulnerability-poc
ARPSyndicate/cvemon
ArrestX/--POC
HimmelAward/Goby_
KayCHENvip/vulnerability-poc
Miraitowa70/POC-Notes
NyxAzrael/Goby_
Threekiii/Awesome-POC
XiaomingX/awesome-poc-for-red-team
Z0fhack/Goby_

References

20190609 Newly releases IoT security issues (mailing-list, x_refsource_BUGTRAQ)
packetstormsecurity.com/files/153224/Amcrest-IPM-721S-Credential-Disclosure-Pri… (x_refsource_MISC)
github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Amcrest_sec_issues.pdf (x_refsource_MISC)

Frequently asked questions

What is CVE-2017-8229?: CVE-2017-8229 is a vulnerability in N/a. Published 2019-07-03.
Is CVE-2017-8229 known to be exploited?: 14 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.