πŸ” CVE Alert

CVE-2026-12527

UNKNOWN 0.0
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

A broken authorization boundary in the RTSP media delivery pipeline of Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803 enables unauthenticated network actors to bypass the device’s credential-enforced live-view workflow and directly retrieve real-time video stream data.

CWE CWE-306
Vendor shenzhen liandian communication technology ltd
Product v380 ip camera / appfhe1_v1.0.6.0
Published Jun 18, 2026
Last Updated Jun 18, 2026
Stay Ahead of the Next One

Get instant alerts for shenzhen liandian communication technology ltd v380 ip camera / appfhe1_v1.0.6.0

Be the first to know when new unknown vulnerabilities affecting shenzhen liandian communication technology ltd v380 ip camera / appfhe1_v1.0.6.0 are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

Shenzhen Liandian Communication Technology LTD / V380 IP Camera / AppFHE1_V1.0.6.0
AppFHE1_V1.0.6.020230803

References

NVD β†— CVE.org β†— EPSS Data β†—
github.com: https://github.com/AounShAh/Research-on-v380-cctv-ip-camera#broken-access-control-leading-to-critical-live-video-exposure

Credits

https://www.linkedin.com/in/syedaounshah/ https://www.linkedin.com/in/muhammad-zubair-a2044b2b3/ https://www.linkedin.com/in/uzair-muzamil-468861231/