Lucene search
K

59 matches found

The Hacker News
The Hacker News
added 2023/03/13 7:36 a.m.71 views

Researchers Uncover Over a Dozen Security Flaws in Akuvox E11 Smart Intercom

More than a dozen security flaws have been disclosed in E11, a smart intercom product made by Chinese company Akuvox. "The vulnerabilities could allow attackers to execute code remotely in order to activate and control the device's camera and microphone, steal video and images, or gain a network...

9.8CVSS1AI score0.01067EPSS
Exploits0
OSV
OSV
added 2022/02/24 10:15 p.m.4 views

CVE-2021-39364

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...

7.5CVSS5.7AI score0.01031EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/10/25 12:0 a.m.5 views

MediaTek Ccu 缓冲区错误漏洞

MediaTek Ccu is a camera control processor from MediaTek China. MediaTek ccu suffers from a buffer error vulnerability that stems from improper locking that could lead to memory corruption. This could result in a local elevation of privilege that requires system execution privileges...

7.2CVSS7.1AI score0.00095EPSS
Exploits0References2
OSV
OSV
added 2021/08/31 5:15 p.m.3 views

CVE-2021-22943

A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect cameras assigned to said network. This vulnerability is fixed in UniFi Protect application V1.19.0 and later...

9.6CVSS7.2AI score0.00411EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/08/31 4:53 p.m.23 views

CVE-2021-22943

A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect cameras assigned to said network. This vulnerability is fixed in UniFi Protect application V1.19.0 and later...

9.3AI score0.00411EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/08/31 12:0 a.m.6 views

Ubiquiti Networks UniFi Protect 授权问题漏洞

Ubiquiti Networks UniFi Protect is a network video recorder from Ubiquiti Networks, Inc. A security vulnerability exists in Ubiquiti Networks UniFi Protect application version 1.18.1 and prior, which can be exploited by attackers to A malicious actor who gains access to the network can take contr...

9.6CVSS5.6AI score0.00411EPSS
Exploits0References1
Prion
Prion
added 2021/06/10 12:15 p.m.21 views

Improper access control

A smart camera product of ZTE is impacted by a permission and access control vulnerability. Due to the defect of user permission management by the cloud-end app, users whose sharing permissions have been revoked can still control the camera, such as restarting the camera, restoring factory...

8CVSS6.9AI score0.00879EPSS
Exploits0References1Affected Software1
HackRead
HackRead
added 2021/03/27 8:9 p.m.51 views

New Android malware poses as “System Update” to steal your data

By Deeba Ahmed The malware is also capable of controlling the device's front and back camera to take photos periodically. This is a post from HackRead.com Read the original post: New Android malware poses as "System Update" to steal your data...

2.8AI score
Exploits0
CNNVD
CNNVD
added 2021/01/26 12:0 a.m.7 views

Geeni GNC-CW013 Trust Management Issues Vulnerability

Geeni GNC-CW013 is a webcam from Geeni USA. A security vulnerability exists in the Geeni GNC-CW013 doorbell version 1.8.1. An attacker can take full control of the camera using a highly privileged account...

7.2CVSS5.8AI score0.01713EPSS
Exploits0References3
NVD
NVD
added 2020/09/25 4:23 a.m.24 views

CVE-2020-25747

The Telnet service of Rubetek RV-3406, RV-3409, and RV-3411 cameras firmware versions v342, v339 can allow a remote attacker to gain access to RTSP and ONFIV services without authentication. Thus, the attacker can watch live streams from the camera, rotate the camera, change some settings...

9.4CVSS0.01848EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/25 3:15 a.m.31 views

CVE-2020-25747

The Telnet service of Rubetek RV-3406, RV-3409, and RV-3411 cameras firmware versions v342, v339 can allow a remote attacker to gain access to RTSP and ONFIV services without authentication. Thus, the attacker can watch live streams from the camera, rotate the camera, change some settings...

9.4AI score0.01848EPSS
Exploits0References1
OSV
OSV
added 2019/09/06 4:15 p.m.8 views

CVE-2019-13953

An exploitable authentication bypass vulnerability exists in the Bluetooth Low Energy BLE authentication module of YI M1 Mirrorless Camera V3.2-cn. An attacker can send a set of BLE commands to trigger this vulnerability, resulting in sensitive data leakage e.g., personal photos. An attacker can...

8.8CVSS5.8AI score0.01029EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/09/06 3:50 p.m.17 views

CVE-2019-13953

An exploitable authentication bypass vulnerability exists in the Bluetooth Low Energy BLE authentication module of YI M1 Mirrorless Camera V3.2-cn. An attacker can send a set of BLE commands to trigger this vulnerability, resulting in sensitive data leakage e.g., personal photos. An attacker can...

8.9AI score0.01029EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/05 12:0 a.m.2 views

Bluetooth Authentication Authorization Bypass Vulnerability in Little Ant Microscan Camera M1

The Ant Microscan Camera M1 is a microscan camera with built-in Bluetooth and wireless capabilities that allow photos to be transferred to a cell phone. A Bluetooth authentication authorization bypass vulnerability exists in the Ant Microsingle Camera M1. An attacker can use this vulnerability to...

7.1AI score
Exploits0
Prion
Prion
added 2019/07/03 8:15 p.m.14 views

Design/Logic Flaw

Amcrest IPM-721S V2.420.AC00.16.R.20160909 devices mishandle reboots within the past two hours. Amcrest cloud services does not perform a thorough verification when allowing the user to add a new camera to the user's account to ensure that the user actually owns the camera other than knowing the...

6.8CVSS8.6AI score0.02597EPSS
Exploits1References3Affected Software1
ThreatPost
ThreatPost
added 2019/07/02 9:23 p.m.223 views

Security Camera Firm Arlo Zaps High-Severity Bugs

Two high-severity vulnerabilities in Arlo Technologies’ wireless home security camera gear have been patched. The flaws, which indirectly impact Arlo’s popular fleet of wireless home security cameras, are limited to adversaries with local network and physical access to Arlo Base Stations. Both...

10CVSS0.01741EPSS
Exploits0References5
OSV
OSV
added 2018/03/05 7:29 p.m.3 views

CVE-2018-7698

An issue was discovered in D-Link mydlink+ 3.8.5 build 259 for DCS-933L 1.05.04 and DCS-934L 1.05.04 devices. The mydlink+ app sends the username and password for connected D-Link cameras such as DCS-933L and DCS-934L unencrypted from the app to the camera, allowing attackers to obtain these...

8.1CVSS5.8AI score0.01112EPSS
Exploits0References1
Prion
Prion
added 2018/03/05 7:29 p.m.16 views

Default credentials

An issue was discovered in D-Link mydlink+ 3.8.5 build 259 for DCS-933L 1.05.04 and DCS-934L 1.05.04 devices. The mydlink+ app sends the username and password for connected D-Link cameras such as DCS-933L and DCS-934L unencrypted from the app to the camera, allowing attackers to obtain these...

4.3CVSS8.2AI score0.01112EPSS
Exploits0References1Affected Software1
myhack58
myhack58
added 2015/07/17 12:0 a.m.17 views

Android new vulnerability: hackers control camera to take pictures to upload-vulnerability warning-the black bar safety net

According to foreign media reports, the former Google engineer Simon Isidore(Szymon Sidor found the Android system there is a new vulnerability, the vulnerability would allow malicious software to control Android device on the camera, and the user unknowingly take pictures, can even upload photos...

0.5AI score
Exploits0
CNVD
CNVD
added 2015/04/11 12:0 a.m.40 views

Remote Control Backdoor Vulnerability in Canon Canon vb-c60 Camera

Canon Japan is a Japanese company dedicated to imaging, optical and office automation products, including cameras, camcorders, copiers, fax machines, image scanners and printers. A remote control backdoor vulnerability exists in the Canon vb-c60 camera, which allows an attacker to send a get...

7.1AI score
Exploits0
Rows per page
Query Builder