CVE-2017-16566 — On Jooan IP Camera A5 2.3.36 devices, an insecure FTP server does not require authentication, which allows remote attackers to read or replace core system files including those used for authentication — CVE Database · The Intelligence Room