CVE-2017-20213

Sažetak

FLIR Thermal Camera F/FC/PT/D Stream firmware version 8.0.0.64 contains an unauthenticated vulnerability that allows remote attackers to access live camera streams without credentials. Attackers can exploit the vulnerability to view unauthorized thermal camera video feeds across multiple camera series without requiring any authentication.

Reference

https://cxsecurity.com/issue/WLB-2017090204
https://packetstormsecurity.com/files/144323
https://web.archive.org/web/20171011125811/https://www.flir.com/security/blog/details/?ID=87043
https://www.exploit-db.com/exploits/42789/
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5435.php
https://cxsecurity.com/issue/WLB-2017090204
https://www.exploit-db.com/exploits/42789/
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5435.php

CVSS

Base:	7.5
Impact:	3.6
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	NONE	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Zadnje važnije ažuriranje

08-01-2026 - 19:15

Objavljeno

08-01-2026 - 00:15