Browse all 3 CVE security advisories affecting CP Plus. AI-powered Chinese analysis, POCs, and references for each vulnerability.
CP Plus specializes in video surveillance and security solutions, including IP cameras and NVR systems. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from hardcoded credentials, insufficient input validation, and insecure default configurations. With three CVEs documented, these vulnerabilities have allowed unauthorized access and system compromise. Security researchers have identified weak authentication mechanisms and unpatched firmware as recurring issues. While no major public incidents have been widely reported, the consistent presence of critical vulnerabilities in their products poses significant risks to enterprise and consumer deployments, highlighting ongoing security challenges in the IoT surveillance sector.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-0479 | Security Misconfiguration Vulnerability in CP Plus Router — CP-XR-DE21-S RouterCWE-1004 | 9.1 | - | 2025-01-20 |
| CVE-2024-3434 | CP Plus Wi-Fi Camera User Management improper authorization — Wi-Fi CameraCWE-285 | 5.4 | Medium | 2024-04-07 |
| CVE-2023-1518 | CP Plus KVMS Pro 安全漏洞 — KVMS ProCWE-522 | 7.8 | High | 2023-03-28 |
This page lists every published CVE security advisory associated with CP Plus. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.