CVE-2021-40380

HIGH

Compro - Info Disclosure

Title source: llm

Description

An issue was discovered on Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, and TN540 devices. cameralist.cgi and setcamera.cgi disclose credentials.

Exploits (1)

exploitdb WRITEUP

by icekam · textwebappshardware

https://www.exploit-db.com/exploits/50252

View Code ZIP pw:eip

References (2)

[Broken Link] https://github.com/icekam/0day/blob/main/Compro-Technology-Camera-has-multiple-vulnerabilities.md

[Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/164027/Compro-Technology-IP-Camera-Credential-Disclosure.html

Scores

CVSS v3 7.5

EPSS 0.3953

EPSS Percentile 97.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

Status published

Products (4)

comprotech/ip570_firmware 2.08_7130520

comprotech/ip60_firmware

comprotech/ip70_firmware 2.08_7130218

comprotech/tn540_firmware

Published Sep 01, 2021

Tracked Since Feb 18, 2026