CVE-2021-30167
The manage users profile services of the network camera device allows an authenticated. Remote attackers can modify URL parameters and further amend user’s information and escalate privileges to control the devices.
Date published : 2021-04-28
https://gist.github.com/keniver/86ebef688fb274b534da51ef1a84dd3e
https://www.chtsecurity.com/news/0b733a38-e616-4ff3-86a6-13e710643388