Lucene search
K

41 matches found

OSV
OSV
added 2019/08/06 7:15 p.m.3 views

CVE-2019-5995

Missing authorization vulnerability exists in EOS series digital cameras EOS-1D X firmware version 2.1.0 and earlier, EOS-1D X MKII firmware version 1.1.6 and earlier, EOS-1D C firmware version 1.4.1 and earlier, EOS 5D MARK III firmware version 1.3.5 and earlier, EOS 5D MARK IV firmware version...

6.5CVSS5.8AI score0.01151EPSS
Exploits1References5
OSV
OSV
added 2019/08/06 7:15 p.m.5 views

CVE-2019-5998

Buffer overflow in PTP Picture Transfer Protocol of EOS series digital cameras EOS-1D X firmware version 2.1.0 and earlier, EOS-1D X MKII firmware version 1.1.6 and earlier, EOS-1D C firmware version 1.4.1 and earlier, EOS 5D MARK III firmware version 1.3.5 and earlier, EOS 5D MARK IV firmware...

8.8CVSS7.9AI score0.02559EPSS
Exploits1References5
OSV
OSV
added 2018/12/20 11:29 p.m.4 views

CVE-2018-18441

D-Link DCS series Wi-Fi cameras expose sensitive information regarding the device configuration. The affected devices include many of DCS series, such as: DCS-936L, DCS-942L, DCS-8000LH, DCS-942LB1, DCS-5222L, DCS-825L, DCS-2630L, DCS-820L, DCS-855L, DCS-2121, DCS-5222LB1, DCS-5020L, and many mor...

7.5CVSS5.8AI score
Exploits0References1
0day.today
0day.today
added 2017/07/11 12:0 a.m.51 views

Schneider Electric Pelco Sarix/Spectra Cameras CSRF Enable SSH Root Access Vulnerability

Pelco IP cameras suffer from a cross site request forgery vulnerability. The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileg...

6.9AI score
Exploits0
Cvelist
Cvelist
added 2017/03/13 6:14 a.m.21 views

CVE-2017-5675

A command-injection vulnerability exists in a web application on a custom-built GoAhead web server used on Foscam, Vstarcam, and multiple white-label IP camera models. The mail-sending form in the mail.htm page allows an attacker to inject a command into the receiver1 field in the form; it will b...

8.7AI score0.01713EPSS
Exploits1References2
NVD
NVD
added 2015/05/14 12:59 a.m.25 views

CVE-2014-1901

Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW001, running firmware 4.30 and earlier, allow remote...

6.8CVSS6.7AI score0.01294EPSS
Exploits0References2
NVD
NVD
added 2015/05/14 12:59 a.m.21 views

CVE-2014-1900

Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW001, running firmware 4.30 and earlier, allow remote...

5CVSS6.6AI score0.01495EPSS
Exploits1References2
Prion
Prion
added 2015/05/14 12:59 a.m.18 views

Authentication flaw

Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW001, running firmware 4.30 and earlier, allow remote...

5CVSS7AI score0.01495EPSS
Exploits1References2Affected Software15
Prion
Prion
added 2015/05/14 12:59 a.m.20 views

Authentication flaw

Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW001, running firmware 4.30 and earlier, allow remote...

6.8CVSS7AI score0.01495EPSS
Exploits1References2Affected Software15
Cvelist
Cvelist
added 2015/05/14 12:0 a.m.24 views

CVE-2014-1902

Multiple cross-site scripting XSS vulnerabilities in Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW00...

5.7AI score0.00792EPSS
Exploits1References2
Cvelist
Cvelist
added 2015/05/14 12:0 a.m.29 views

CVE-2014-1900

Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW001, running firmware 4.30 and earlier, allow remote...

6.6AI score0.01495EPSS
Exploits1References2
Cvelist
Cvelist
added 2013/10/11 9:0 p.m.26 views

CVE-2013-3686

cgi-bin/operator/param in AirLive WL2600CAM and possibly other camera models allows remote attackers to obtain the administrator password via a list action...

7.5AI score0.27567EPSS
Exploits5References1
Cvelist
Cvelist
added 2013/10/11 9:0 p.m.31 views

CVE-2013-3687

AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models use cleartext to store sensitive information, which allows attackers to obtain passwords, user names, and other sensitive information by reading an unspecified backup file...

7.4AI score0.02645EPSS
Exploits4References1
NVD
NVD
added 2013/10/04 11:55 p.m.19 views

CVE-2013-3540

Cross-site request forgery CSRF vulnerability in cgi-bin/admin/usrgrp.cgi in AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models allows remote attackers to hijack the authentication of administrators for requests that add users...

6.8CVSS7.1AI score0.01013EPSS
Exploits5References1
NVD
NVD
added 2013/10/04 11:55 p.m.18 views

CVE-2013-3689

Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.0.6.16C1 and earlier, do not properly restrict access to configfile.dump, which allow remote attackers to obtain sensitive information user names, passwords, and configurations...

7.8CVSS6.3AI score0.01482EPSS
Exploits1References1
Cvelist
Cvelist
added 2013/10/04 11:0 p.m.27 views

CVE-2013-3540

Cross-site request forgery CSRF vulnerability in cgi-bin/admin/usrgrp.cgi in AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models allows remote attackers to hijack the authentication of administrators for requests that add users...

7.9AI score0.01013EPSS
Exploits5References1
Cvelist
Cvelist
added 2013/10/04 11:0 p.m.21 views

CVE-2013-3689

Brickcom FB-100Ap, WCB-100Ap, MD-100Ap, WFB-100Ap, OB-100Ae, OSD-040E, and possibly other camera models with firmware 3.0.6.16C1 and earlier, do not properly restrict access to configfile.dump, which allow remote attackers to obtain sensitive information user names, passwords, and configurations...

6.3AI score0.01482EPSS
Exploits1References1
CVE
CVE
added 2013/10/04 11:0 p.m.50 views

CVE-2013-3540

CVE-2013-3540 affects AirLive IP cameras (e.g., POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD). The vulnerability is a Cross-Site Request Forgery (CSRF) in the CGI endpoint cgi-bin/admin/usrgrp.cgi, enabling remote attackers to hijack administrator authentication to perf...

6.8CVSS7.8AI score0.01013EPSS
Exploits5References1Affected Software6
NVD
NVD
added 2013/10/01 7:55 p.m.24 views

CVE-2013-3963

Cross-site request forgery CSRF vulnerability in goform/usermanage in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WPHD, GXV3500, and possibly other camera models allows remote attackers to hijack the authentication of unspecified...

6.8CVSS7.2AI score0.00965EPSS
Exploits1References1
NVD
NVD
added 2013/10/01 7:55 p.m.16 views

CVE-2013-3962

Cross-site scripting XSS vulnerability in Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WPHD, GXV3500, and possibly other camera models before firmware 1.0.4.44, allows remote attackers to inject arbitrary web script or HTML via the...

4.3CVSS5.9AI score0.00931EPSS
Exploits1References2
Rows per page
Query Builder