Back to search
CVE-2025-9983
Published: Sep 22, 2025
Modified: Sep 22, 2025
PUBLISHED
Description
GALAYOU G2 cameras stream video output via RTSP streams. By default these streams are protected by randomly generated credentials. However these credentials are not required to access the stream. Changing these values does not change camera's behavior. The vendor did not respond in any way. Only version 11.100001.01.28 was tested, other versions might also be vulnerable.
| Vendor | Product | Versions |
|---|---|---|
GALAYOU | G2 | affected 11.100001.01.28 |
Weaknesses (CWE)
References
https://cert.pl/en/posts/2025/09/CVE-2025-9983
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now