CVE-2021-4469P2HIGHCVSS 8.7v02025-11-14
CVE-2021-4469 [HIGH] CWE-306 CVE-2021-4469: Denver SHO-110 IP cameras expose a secondary HTTP service on TCP port 8001 that provides access to a
Denver SHO-110 IP cameras expose a secondary HTTP service on TCP port 8001 that provides access to a '/snapshot' endpoint without authentication. While the primary web interface on port 80 enforces authentication, the backdoor service allows any remote attacker to retrieve image snapshots by directly requesting the 'snapshot' endpoint. An attacker can r
nvd