The flaws affect at least 6 device families, with over 2,500 vulnerable devices discovered online across Brazil, US, Germany, Taiwan, Japan, aside from thousands of other devices capable of being remotely compromised. The flaws were discovered by security firm Acronis last year following a routine security audit of a Singapore-based major retailer. A third issue concerns a previously undocumented root password that permits an attacker backdoor access to a device by simply using the default password (“admin”) and remotely log in to the vulnerable device.
Source: https://thehackernews.com/2020/06/geovision-scanner-vulnerabilities.html