Arbitrary Code Execution Vulnerability in VIVOTEK FD8177 Devices via ONVIF Interface

CVE-2018-14770

VIVOTEK FD8177 devices before XXXXXX-VVTK-xx06a allow remote attackers to execute arbitrary code (issue 1 of 2) via the ONVIF interface, (/onvif/device_service).

Learn more about our Web Application Penetration Testing UK.