Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:27 a.m.8 views

CVE-2023-26039

ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain an OS Command Injection via daemonControl in /web/api/app/Controller/HostController.php. Any authenticated user can...

8.8CVSS7.3AI score0.01246EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-26039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33...

8.8CVSS7.1AI score0.01246EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/02/25 1:31 a.m.6 views

CVE-2023-26039 ZoneMinder vulnerable to OS Command injection in daemonControl() API

ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain an OS Command Injection via daemonControl in /web/api/app/Controller/HostController.php. Any authenticated user can...

7.1CVSS8.2AI score0.01246EPSS
Exploits1References1
CVE
CVE
added 2023/02/25 1:31 a.m.77 views

CVE-2023-26039

ZoneMinder (CVE-2023-26039) is affected in versions prior to 1.36.33 and 1.37.33. The vulnerability is an OS Command Injection via daemonControl() in /web/api/app/Controller/HostController.php, allowing any authenticated user to run arbitrary shell commands as the web user. This is addressed by p...

8.8CVSS8AI score0.01246EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder