CVE-2025-14749 | Ningyuanda TC155 57.0.2.0 ONVIF PTZ Control Interface /onvif/device_service access control

Inserito da Angelo Barbosa | Dic 15, 2025 | CVE

A vulnerability has been found in Ningyuanda TC155 57.0.2.0 and classified as critical. This impacts an unknown function of the file /onvif/device_service of the component ONVIF PTZ Control Interface. The manipulation leads to improper access controls.

This vulnerability is documented as CVE-2025-14749. The attack requires being on the local network. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-14749 | Ningyuanda TC155 57.0.2.0 ONVIF PTZ Control Interface /onvif/device_service access control

Post correlati

CVE-2023-46447 | POPS Rebel Bluetooth Glucose Monitoring System 5.0 on Android App cleartext transmission

CVE-2024-34437 | 10Web Form Maker Plugin up to 1.15.24 on WordPress cross site scripting

Elementor Addon Elements Plugin authorization

Fuji Electric TELLUS/TELLUS Lite buffer overflow