Auth bypass in Commax Co., Ltd. Smart Home Ruvie Cctv Bridge Dvr Service

CVE-2021-47709

COMMAX Smart Home System allows an unauthenticated attacker to change configuration and cause denial-of-service through the setconf endpoint. Attackers can trigger a denial-of-service scenario by sending a malformed request to the setconf…

Vulnerability class: Broken Authentication

EPSS: 0.003 (23.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References