Auth bypass in Shenzhen Liandian Communication Technology Ltd V380 Ip Camera / Appfhe1_v1.0.6.0

CVE-2026-12527

A broken authorization boundary in the RTSP media delivery pipeline of Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803 enables unauthenticated network actors to bypass the device’s credential…

Vulnerability class: Broken Authentication

Affected products

Weakness classification (CWE)

References