CVE-2025-67159

Published January 2nd, 2026

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

N/A

Affected

1

PROJECT

Description

Vatilon v1.12.37-20240124 was discovered to transmit user credentials in plaintext.

Remenis/CVE-2025-67159

Vatilon-based IP camera firmware allows authentication bypass and plaintext credential exposure via web.cgi API requests.

GitHub