A broken authorization boundary in the RTSP media...
Moderate severity
Unreviewed
Published
Jun 18, 2026
to the GitHub Advisory Database
•
Updated Jun 18, 2026
Description
Published by the National Vulnerability Database
Jun 18, 2026
Published to the GitHub Advisory Database
Jun 18, 2026
Last updated
Jun 18, 2026
A broken authorization boundary in the RTSP media delivery pipeline of Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803 enables unauthenticated network actors to bypass the device’s credential-enforced live-view workflow and directly retrieve real-time video stream data.
References