Back to search
CVE-2021-47710
Published: Dec 9, 2025
Modified: Apr 7, 2026
PUBLISHED
Description
COMMAX Smart Home System is a smart IoT home solution that allows an unauthenticated attacker to disclose RTSP credentials in plain-text by exploiting the /overview.asp endpoint. Attackers can access sensitive information, including login credentials and DVR settings, by submitting a GET request to this endpoint.
| Vendor | Product | Versions |
|---|---|---|
COMMAX Co., Ltd. | Smart Home Ruvie CCTV Bridge DVR Service | affected * |
Weaknesses (CWE)
References
ExploitDB-50208
exploit
COMMAX Homepage
product
Zero Science Lab Disclosure (ZSL-2021-5665)
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now