Lucene search
K

17 matches found

NVD
NVD
added 2 days ago4 views

CVE-2026-58453

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...

9.8CVSS0.0169EPSS
Exploits0References3
Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-58454 JAIOTlink C492A-W6 4.8.30.57701411 RCE via /Anyka/config Endpoint

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a remote code execution vulnerability that allows authenticated attackers to execute arbitrary shell scripts by writing to the writable persistent JFFS2 storage path and triggering execution through the authenticated HTT...

7.7CVSS0.00523EPSS
Exploits0References3
EUVD
EUVD
added 2 days ago5 views

EUVD-2026-41049

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...

9.8CVSS5.8AI score0.0169EPSS
Exploits0References3
Cvelist
Cvelist
added 2 days ago28 views

CVE-2026-58453 JAIOTlink C492A-W6 4.8.30.57701411 Hard-coded Credentials via anyka_ipc

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anykaipc HTTP service on port 80...

9.8CVSS0.0169EPSS
Exploits0References3
CVE
CVE
added 2 days ago9 views

CVE-2026-58453

JAIOTlink C492A-W6 Wi‑Fi IP cameras (firmware 4.8.30.57701411) are affected by CVE-2026-58453 due to hard-coded credentials. An attacker on the network can authenticate to the anyka_ipc HTTP service (port 80) using the default admin username with an empty password, gaining unauthorized access to ...

9.8CVSS5.8AI score0.0169EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/11 12:50 p.m.4 views

CVE-2025-63296

KERUI K259 5MP Wi-Fi / Tuya Smart Security Camera firmware v33.53.87 contains a code execution vulnerability in its boot/update logic: during startup /usr/sbin/anykaservice.sh scans mounted TF/SD cards and, if /mnt/update.nor.sh is present, copies it to /tmp/net.sh and executes it as root...

6.5CVSS7.5AI score0.00285EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-34820

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0347EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:5 a.m.5 views

CVE-2023-30400

An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password...

9.8CVSS7.8AI score0.0347EPSS
Exploits1References1
OSV
OSV
added 2025/03/11 4:15 p.m.3 views

CVE-2025-25680

LSC Smart Connect LSC Indoor PTZ Camera 7.6.32 is contains a RCE vulnerability in the tuyaipcdirectconnect function of the anykaipc process. The vulnerability allows arbitrary code execution through the Wi-Fi configuration process when a specially crafted QR code is presented to the camera...

7.7CVSS6.3AI score0.00534EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/06/07 1:15 a.m.2 views

CVE-2023-30400

An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password...

9.8CVSS6.2AI score0.0347EPSS
Exploits1References3
NVD
NVD
added 2023/06/07 1:15 a.m.12 views

CVE-2023-30400

An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password...

9.8CVSS9.6AI score0.0347EPSS
Exploits1References2
OSV
OSV
added 2023/06/07 1:15 a.m.3 views

CVE-2023-30400

An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password...

9.8CVSS7.5AI score0.0347EPSS
Exploits1References2
Prion
Prion
added 2023/06/07 1:15 a.m.18 views

Command injection

An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password...

7.5CVSS9.5AI score0.0347EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/07 12:0 a.m.9 views

CVE-2023-30400

An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password...

9.6AI score0.0347EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/06/07 12:0 a.m.5 views

PT-2023-22672 · Anyka Microelectronics · Ak3918Ev300

Name of the Vulnerable Software and Affected Versions: Anyka Microelectronics AK3918EV300 MCU version 18 Description: An issue was discovered in the network configuration script within the MCU's operating system, allowing attackers to perform arbitrary command execution via a crafted wifi SSID or...

9.8CVSS8AI score0.0347EPSS
Exploits1References4
CVE
CVE
added 2023/06/07 12:0 a.m.53 views

CVE-2023-30400

CVE-2023-30400 affects Anyka Microelectronics AK3918EV300 MCU v18. The issue is a command injection in the MCU’s network configuration script, enabling arbitrary command execution when a crafted wifi SSID or password is processed. CVSS 3.1 base score 9.8 (CRITICAL) with network attack vector, low...

9.8CVSS9.4AI score0.0347EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2023/06/07 12:0 a.m.4 views

Anyka Microelectronics AK3918EV300 MCU 命令注入漏洞

Anyka Microelectronics AK3918EV300 MCU is a single chip from Anyka Microelectronics China. A security vulnerability exists in the Anyka Microelectronics AK3918EV300 MCU v18. The vulnerability can be exploited by an attacker to execute arbitrary commands via a specially crafted wifi SSID or passwo...

9.8CVSS8.8AI score0.0347EPSS
Exploits1References3
Rows per page
Query Builder