CVE-2021-26611

HIGH

HejHome GKW-IC052 Firmware - Use of Hard-coded Credentials

Title source: llm

Description

HejHome GKW-IC052 IP Camera contained a hard-coded credentials vulnerability. This issue allows remote attackers to operate the IP Camera.(reboot, factory reset, snapshot etc..)

References (1)

Core 1

Core References

Third Party Advisory x_refsource_misc

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36359

Scores

CVSS v3 8.1

EPSS 0.0113

EPSS Percentile 62.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-798

Status published

Products (4)

hej/hejhome_gkw-ic052_firmware 2.9.5

hej/hejhome_gkw-ic052_firmware 2.9.6

hej/hejhome_gkw-ic052_firmware 2.9.7

hej/hejhome_gkw-ic052_firmware 4.0.4

Published Nov 26, 2021

Tracked Since Feb 18, 2026