CVE-2017-15236

HIGH

Tiandy IP Camera Firmware 5.56.17.120 - Unauthenticated Sensitive Information Exposure via TCP Port 3001

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-15236. PoCs published by SecuriTeam.

AI-analyzed exploit summary This exploit demonstrates an information disclosure vulnerability in Tiandy IP cameras by sending a crafted proprietary protocol request to download sensitive configuration files. The PoC uses a socket connection to port 3001 and sends a hardcoded payload to retrieve files like config_server.ini.

Description

Tiandy IP cameras 5.56.17.120 do not properly restrict a certain proprietary protocol, which allows remote attackers to read settings via a crafted request to TCP port 3001, as demonstrated by config* files and extendword.txt.

Exploits (1)

exploitdb WORKING POC
by SecuriTeam · webappshardware
https://www.exploit-db.com/exploits/44058

This exploit demonstrates an information disclosure vulnerability in Tiandy IP cameras by sending a crafted proprietary protocol request to download sensitive configuration files. The PoC uses a socket connection to port 3001 and sends a hardcoded payload to retrieve files like config_server.ini.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Tiandy IP cameras version 5.56.17.120
No auth needed
Prerequisites: Network access to the target IP camera · Target camera must be running the vulnerable firmware
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://blogs.securiteam.com/index.php/archives/3444

Scores

CVSS v3 7.5
EPSS 0.0361
EPSS Percentile 88.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (1)
tiandy/tiandy_ip_camera_firmware 5.56.17.120
Published Oct 11, 2017
Tracked Since Feb 18, 2026