CVE-2026-12527
Received Received - Intake
Unauthenticated RTSP Stream Access in V380 IP Camera Firmware

Publication date: 2026-06-18

Last updated on: 2026-06-18

Assigner: Toreon

Description
A broken authorization boundary in the RTSP media delivery pipeline of Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803 enables unauthenticated network actors to bypass the device’s credential-enforced live-view workflow and directly retrieve real-time video stream data.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-18
Last Modified
2026-06-18
Generated
2026-06-19
AI Q&A
2026-06-18
EPSS Evaluated
N/A
NVD
CVE-2026-12527
EUVD
EUVD-2026-37894
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
shenzhen_liandian_communication_technology_ltd v380_ip_camera appfhe1_v1.0.6.020230803
shenzhen_liandian_communication_technology_ltd v380_ip_camera kerfhe1_ptz_wifi_v3.1.1
shenzhen_liandian_communication_technology_ltd v380_ip_camera hwfhe1_wf6_ptz_wifi_20201218
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-306 The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The vulnerability allows unauthenticated network actors to bypass credential enforcement and directly access real-time video streams from the affected IP camera. This unauthorized access to potentially sensitive video data could lead to violations of privacy and data protection regulations such as GDPR and HIPAA, which require strict controls over personal and sensitive information.

By enabling unauthorized access to live video feeds, the vulnerability undermines the confidentiality and integrity of the data, which are core principles in many compliance frameworks. Organizations using these devices may face compliance risks if they fail to secure or remediate this vulnerability.

Executive Summary

This vulnerability is a broken authorization boundary in the RTSP media delivery pipeline of Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803. It allows unauthenticated network actors to bypass the device’s credential-enforced live-view workflow and directly retrieve real-time video stream data.

Impact Analysis

The vulnerability enables unauthorized users to access live video streams from the affected IP camera without needing to authenticate. This can lead to privacy breaches, unauthorized surveillance, and exposure of sensitive real-time video data.

Detection Guidance

This vulnerability involves an undocumented Telnet service running on port 23 on affected V380 IP cameras. Detection can be performed by scanning the network for devices with port 23 open and attempting to connect via Telnet.

  • Use a network scanning tool such as nmap to identify devices with port 23 open: nmap -p 23 <target-ip-range>
  • Attempt to connect to the Telnet service using a Telnet client: telnet <device-ip> 23
  • Try the default, undocumented credentials to gain access, which may provide root shell access.

Successful connection and login to the Telnet service without proper authorization indicates the presence of the vulnerability.

Mitigation Strategies

Immediate mitigation steps are limited due to the lack of vendor-provided firmware updates or options to disable the Telnet service.

  • Isolate the affected V380 IP cameras from untrusted networks to reduce exposure.
  • Restrict network access to the cameras by implementing firewall rules blocking port 23 (Telnet) from unauthorized sources.
  • Monitor network traffic for unauthorized Telnet connections to the devices.

Since no vendor patches or configuration options are available, these network-level controls are critical to reduce risk.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-12527. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart