CVE-2026-26340 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Tattile Smart+, Vega, and Basic device families firmware versions 1.181.5 and prior expose RTSP streams without requiring authentication. A remote attacker can…
High CVSS: 8.7

CVE-2026-26340

Tattile Smart+, Vega, and Basic device families firmware versions 1.181.5 and prior expose RTSP streams without requiring authentication. A remote attacker can connect to the RTSP service and access live video/audio streams without valid credentials, resulting in unauthorized disclosure of surveillance data.
Vendor
Tattile
Product
Smart\+ Firmware
CWE
CWE-306
Yayın Tarihi
2026-02-24 20:27:47
Güncelleme
2026-02-26 17:38:44
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-306 Smart\+ Firmware HIGH Tattile 2026

Referanslar

https://www.tattile.com/ https://www.vulncheck.com/advisories/tattile-smart-vega-basic-unauthenticated-rtsp-stream-disclosure https://www.zeroscience.mk/en/vulnerabilities/ZSL-2026-5978.php