CVE-2021-47710

UNKNOWN 0.0

COMMAX Smart Home Ruvie CCTV Bridge DVR Service RTSP Credentials Disclosure

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

COMMAX Smart Home System is a smart IoT home solution that allows an unauthenticated attacker to disclose RTSP credentials in plain-text by exploiting the /overview.asp endpoint. Attackers can access sensitive information, including login credentials and DVR settings, by submitting a GET request to this endpoint.

CWE	CWE-306
Vendor	commax co., ltd.
Product	smart home ruvie cctv bridge dvr service
Published	Dec 9, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for commax co., ltd. smart home ruvie cctv bridge dvr service

Be the first to know when new unknown vulnerabilities affecting commax co., ltd. smart home ruvie cctv bridge dvr service are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

COMMAX Co., Ltd. / Smart Home Ruvie CCTV Bridge DVR Service

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/50208 commax.com: https://www.commax.com zeroscience.mk: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5665.php vulncheck.com: https://www.vulncheck.com/advisories/commax-smart-home-ruvie-cctv-bridge-dvr-service-rtsp-credentials-disclosure

Credits

LiquidWorm as Gjoko Krstic of Zero Science Lab