Lucene search
K

28 matches found

NVD
NVD
added 5 days ago5 views

CVE-2026-57157

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0, FreeRDP server implementations with the MS-RDPECAM camera device enumerator channel enabled scan attacker-supplied DeviceName and VirtualChannelName fields for a NUL terminator in...

6.5CVSS0.00539EPSS
Exploits1References6
Cvelist
Cvelist
added 5 days ago31 views

CVE-2026-57157 Out-of-bounds read in the camera device enumerator server (rdpecam) via unterminated DeviceName / VirtualChannelName

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0, FreeRDP server implementations with the MS-RDPECAM camera device enumerator channel enabled scan attacker-supplied DeviceName and VirtualChannelName fields for a NUL terminator in...

6.5CVSS0.00539EPSS
Exploits1References6
CVE
CVE
added 5 days ago12 views

CVE-2026-57157

FreeRDP (server implementations with the MS-RDPECAM camera device enumerator channel enabled) is affected prior to 3.28.0. Attackers can cause a 1- to 2-byte out-of-bounds heap read by scanning attacker-supplied DeviceName and VirtualChannelName fields and dereferencing beyond the scanned bound i...

6.5CVSS6.1AI score0.00539EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/18 9:55 p.m.5 views

CVE-2019-25354 iSmartViewPro 1.3.34 - Denial of Service

iSmartViewPro 1.3.34 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the camera ID input field. Attackers can paste a 257-character buffer into the camera DID and password fields to trigger an application crash on iOS devices...

7.5CVSS5.8AI score0.0032EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.6 views

ACE SECURITY WiP-90113 访问控制错误漏洞

ACE SECURITY WiP-90113 is a camera product developed by the Japanese company ACE SECURITY. ACE SECURITY WiP-90113 has a vulnerability related to access control. This vulnerability arises from the unprotected configuration of backup endpoints, which may allow unverified attackers to retrieve...

8.7CVSS5.8AI score0.00414EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/05 12:0 a.m.2 views

CVE-2025-52519

An issue was discovered in the Camera in Samsung Mobile Processor and Wearable Processor Exynos 1330, 1380, 1480, 2400, 1580, and 2500. Improper validation of user-space input in the issimian device driver leads to information disclosure and a denial of service...

6AI score0.00111EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-5952

Malware in sbrugna...

6.9CVSS6.4AI score0.00299EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17103

Malware in sbrugna...

9.8CVSS9.2AI score0.02443EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-20062

Malware in sbrugna...

7.5CVSS7.5AI score0.00711EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-33399

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01854EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-58033

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00563EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:2 p.m.10 views

CVE-2020-27554

Cleartext Transmission of Sensitive Information vulnerability in BASETech GE-131 BT-1837836 firmware 20180921 exists which could leak sensitive information transmitted between the mobile app and the camera device...

7.5CVSS6.6AI score0.00711EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 5:57 a.m.6 views

CVE-2017-8221

Wireless IP Camera P2P WIFICAM devices rely on a cleartext UDP tunnel protocol aka the Cloud feature for communication between an Android application and a camera device, which allows remote attackers to obtain sensitive information by sniffing the network...

7.5CVSS7.6AI score0.0271EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/16 4:9 p.m.12 views

CVE-2025-47782

motionEye is an online interface for the software motion, a video surveillance program with motion detection. In versions 0.43.1b1 through 0.43.1b3, using a constructed camera device path with the add/addcamera motionEye web API allows an attacker with motionEye admin user credentials to execute...

9.3CVSS7.3AI score0.00424EPSS
Exploits0References1
Veracode
Veracode
added 2025/05/15 8:33 a.m.9 views

Remote Code Execution (RCE)

motioneye is vulnerable to Remote Code Execution RCE. The vulnerability is due to improper validation of the constructed camera device path in the add/addcamera web API, which allows an attacker with admin credentials to execute arbitrary commands...

9.3CVSS8AI score0.00424EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2023/11/13 8:15 a.m.18 views

CVE-2023-5747

Bashis, a Security Researcher at IPVM has found a flaw that allows for a remote code execution during the installation of Wave on the camera device. The Wave server application in camera device was vulnerable to command injection allowing an attacker to run arbitrary code. HanwhaVision has releas...

8.8CVSS0.00563EPSS
Exploits0References1
CVE
CVE
added 2023/11/13 7:48 a.m.62 views

CVE-2023-5747

CVE-2023-5747 affects Hanwha Vision Wave server application on camera devices. The flaw enables remote code execution via command injection during the installation process of Wave, allowing arbitrary code execution on the device. Public disclosures describe a vulnerability in the Wave server that...

8.8CVSS8.6AI score0.00563EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2021/04/28 12:0 a.m.7 views

PT-2021-18641 · Unknown · Network Camera Device

Name of the Vulnerable Software and Affected Versions: Network camera device affected versions not specified Description: The issue concerns the manage users profile services of the network camera device, which allows an authenticated remote attacker to modify URL parameters and amend a user's...

9.8CVSS9.2AI score0.02443EPSS
Exploits0References6
CNVD
CNVD
added 2021/04/19 12:0 a.m.12 views

Unspecified vulnerability in Linux kernel (CNVD-2021-29468)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in versions of Linux kernel prior to 5.11.3, which stems from a problem found in the presence of the camera device, where a memory leak exists i...

6.2CVSS6.6AI score0.00369EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/02 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in versions of Linux kernel prior to 5.11.3, which stems from a problem found in the presence of the camera device, where a memory leak exists i...

6.2CVSS6.5AI score0.00369EPSS
Exploits0References26
Rows per page
Query Builder