Description
PLANEX CS-QP50F-ING2 smart cameras expose a configuration backup interface over HTTP that does not require authentication. A remote, unauthenticated attacker can directly retrieve a compressed configuration backup file from the device. The backup contains sensitive configuration information, including credentials, allowing an attacker to obtain administrative access to the camera and compromise the confidentiality of the monitored environment.
References (4)
Core 4
Core References
Various Sources exploit
https://packetstorm.news/files/id/160805/
Various Sources product
https://www.planex.co.jp/products/cs-qp50f/
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/planex-cs-qp50f-ing2-smart-camera-remote-configuration-disclosure
Issue Tracking exploit
https://cxsecurity.com/issue/WLB-2021010050
Scores
CVSS v4
8.7
EPSS
0.0059
EPSS Percentile
43.6%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-306
Status
published
Products (1)
PLANEX COMMUNICATIONS Inc./CS-QP50F-ING2
Published
Nov 14, 2025
Tracked Since
Feb 18, 2026