Security Advisory

CVE-2019-25236

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-24 19:27:55

Last updated 2025-12-24 20:23:52

Assigner VulnCheck

State PUBLISHED

Description

iSeeQ Hybrid DVR WH-H4 1.03R contains an unauthenticated vulnerability in the get_jpeg script that allows unauthorized access to live video streams. Attackers can retrieve video snapshots from specific camera channels by sending requests to the /cgi-bin/get_jpeg endpoint without authentication.

← Browse all CVEs View on cve.org ↗