Security Advisory

CVE-2026-33359

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-11 16:03:21

Last updated 2026-05-11 18:18:06

Assigner runZero

State PUBLISHED

Description

In Meari IoT Cloud alert image storage on Alibaba OSS (latest observed; storage service version not disclosed), motion snapshots are retrievable without authentication, signed URLs, or expiry enforcement. URLs function as direct object references and remain valid beyond expected operational windows.

← Browse all CVEs View on cve.org ↗