cvedb.io
CVE-2018-12258
MEDIUM · CVSS 6.8
EPSS exploitation probability: 0%
Published 2018-06-12T18:29:00.583 · Last modified 2026-06-17T01:37:26.457

Summary

An issue was discovered on Momentum Axel 720P 5.1.8 devices. Custom Firmware Upgrade is possible via an SD Card. With physical access, an attacker can upgrade the firmware in under 60 seconds by inserting an SD card containing the firmware with name 'ezviz.dav' and rebooting.

Affected products

apollotechnologiesinc — momentum_axel_720p_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when apollotechnologiesinc ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.