Information disclosure in Netwave IP camera at get_status.cgi allows an unauthenticated attacker to exfiltrate sensitive information from the device.
This POC also checks for the presence of CVE-2018-11653
Potencially vulnerable targets can be found at Shodan