Is CVE-2018-17917 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Hangzhou Xiongmai Technology Co., Ltd Xmeye P2p Cloud Server

CVE-2018-17917

All versions of Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server may allow an attacker to use MAC addresses to enumerate potential Cloud IDs. Using this ID, the attacker can discover and connect to valid devices using one of th…

EPSS: 0.002 (39.3th percentile) — read the EPSS interpretation.

Affected products

Hangzhou Xiongmai Technology Co., Ltd Xmeye P2p Cloud Server — versions All versions

Weakness classification (CWE)

CWE-341

Public proof-of-concept exploits

KostasEreksonas/Besder-6024PB-XMA501-ip-camera-security-investigation

References

ics-cert.us-cert.gov/advisories/ICSA-18-282-06 (x_refsource_MISC)

Frequently asked questions

What is CVE-2018-17917?: CVE-2018-17917 is a vulnerability in Hangzhou Xiongmai Technology Co., Ltd Xmeye P2p Cloud Server, classified under CWE-341. Published 2018-10-10.
Is CVE-2018-17917 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.