EUVD-2017-4149

Malware in sbrugna...

EUVD-2022-40984

Malicious code in bioql PyPI...

Planex多款产品 安全漏洞

Planex SmaCam CS-QR10 and others are products of Planex Japan.Planex SmaCam CS-QR10 is a network smart camera.Planex SmaCam CS-QR20 is a network camera.Planex SmaCam CS-QR22 is a network camera. A security vulnerability exists in several Planex products, which can be exploited by attackers to...

CVE-2022-38399

Missing protection mechanism for alternate hardware interface in SmaCam CS-QR10 all versions and SmaCam Night Vision CS-QR20 all versions allows an attacker to execute an arbitrary OS command by having the product connect to the product's specific serial connection...

CVE-2022-38399

Missing protection mechanism for alternate hardware interface in SmaCam CS-QR10 all versions and SmaCam Night Vision CS-QR20 all versions allows an attacker to execute an arbitrary OS command by having the product connect to the product's specific serial connection...

CVE-2022-38399

CVE-2022-38399 affects Planex SmaCam CS-QR10 (all versions) and SmaCam Night Vision CS-QR20 (all versions). Root cause: missing protection mechanism for the alternate hardware interface, enabling an attacker with physical access to trigger arbitrary OS command execution by connecting to the devic...

CVE-2017-12577

An issue was discovered on the PLANEX CS-QR20 1.30. A hardcoded account / password "admin:password" is used in the Android application that allows attackers to use a hidden API URL "/goform/SystemCommand" to execute any command with root permission...

CVE-2017-12576

An issue was discovered on the PLANEX CS-QR20 1.30. A hidden and undocumented management page allows an attacker to execute arbitrary code on the device when the user is authenticated. The management page was used for debugging purposes, once you login and access the page directly...

CVE-2017-12576

An issue was discovered on the PLANEX CS-QR20 1.30. A hidden and undocumented management page allows an attacker to execute arbitrary code on the device when the user is authenticated. The management page was used for debugging purposes, once you login and access the page directly...

Hardcoded credentials

An issue was discovered on the PLANEX CS-QR20 1.30. A hardcoded account / password "admin:password" is used in the Android application that allows attackers to use a hidden API URL "/goform/SystemCommand" to execute any command with root permission...

CVE-2017-12576

CVE-2017-12576 affects PLANEX CS-QR20 (firmware 1.30) via a hidden, undocumented management page (/admin/system_command.asp) that allows an authenticated user to execute arbitrary commands, enabling remote code execution on the device. The issue arises from an admin/debug interface that should no...

CVE-2017-12576

An issue was discovered on the PLANEX CS-QR20 1.30. A hidden and undocumented management page allows an attacker to execute arbitrary code on the device when the user is authenticated. The management page was used for debugging purposes, once you login and access the page directly...

CVE-2017-12577

An issue was discovered on the PLANEX CS-QR20 1.30. A hardcoded account / password "admin:password" is used in the Android application that allows attackers to use a hidden API URL "/goform/SystemCommand" to execute any command with root permission...

CVE-2017-12577

CVE-2017-12577 affects PLANEX CS-QR20 (version 1.30). The Android app ships a hardcoded credential (admin:password) that can be used to access a hidden API URL /goform/SystemCommand, enabling an attacker to execute arbitrary commands with root privileges. This is tied to the Web UI component and ...

PLANEX CS-QR20 Command Execution

Reserved CVE: CVE-2017-12576 Description A hidden and undocumented management page allows an attacker to execute arbitrary code on the device when the user is authenticated. Vulnerability Type Insecure Permissions Affected Product Code Base Firmware ver 1.30 Affected Component Web management UI...

PLANEX CS-QR20 Hardcoded Voucher Vulnerability

PLANEX is a Japanese networking brand company brands PCI and PLANEX. We provide products from enterprise customers to home customers e.g., network cards, routers, switches, L3 managed switches, accessories, Bluetooth products, print servers, Apple peripherals, network storage devices, etc.. PLANE...

PLANEX CS-QR20 Arbitrary Code Execution Vulnerability

PLANEX is a Japanese networking brand company brands PCI and PLANEX. We provide products from enterprise customers to home customers e.g., network cards, routers, switches, L3 managed switches, accessories, Bluetooth products, print servers, Apple peripherals, network storage devices, etc.. PLANE...