7637 matches found
CVE-2020-36885 Sony IPELA Network Camera 1.82.01 Remote Stack Buffer Overflow via ftpclient.cgi
Sony IPELA Network Camera 1.82.01 contains a stack buffer overflow vulnerability in the ftpclient.cgi endpoint that allows remote attackers to execute arbitrary code. Attackers can exploit the vulnerability by sending a crafted POST request with oversized data to the FTP client functionality,...
EUVD-2025-202452
A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...
CVE-2025-13607
A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...
CVE-2025-62570
Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally...
CVE-2025-13607
CVE-2025-13607 affects D-Link CCTV camera model DCS-F5614-L1 and related entries, describing unauthenticated access to camera configuration data (including account credentials) via a vulnerable URL. Connected sources consistently state missing authentication as the root cause; several enrichments...
CVE-2025-13607 D-Link CCTV camera model DCS-F5614-L1 Missing Authentication for Critical Function
A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...
CVE-2025-13607 D-Link CCTV camera model DCS-F5614-L1 Missing Authentication for Critical Function
A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL...
CVE-2025-65291
Aqara Hub devices including Hub M2 4.3.60027, Hub M3 4.3.60025, Camera Hub G3 4.1.90027 fail to validate server certificates in TLS connections for discovery services and CoAP gateway communications, enabling man-in-the-middle attacks on device control and monitoring...
Aqara多款产品 安全漏洞
Aqara Camera Hub G3 and others are a smart surveillance camera from Aqara USA. A security vulnerability exists in various Aqara products, which stems from the automatic collection and uploading of unencrypted sensitive information. The following products and versions are affected: the Camera Hub ...
CVE-2025-65296
NULL-pointer dereference vulnerabilities in Aqara Hub M2 4.3.60027, Hub M3 4.3.60025, and Camera Hub G3 4.1.90027 in the JSON processing enable denial-of-service attacks through malformed JSON inputs...
CVE-2025-65290
Aqara Hub devices including Camera Hub G3 4.1.90027, Hub M2 4.3.60027, and Hub M3 4.3.60025 fail to validate server certificates during HTTPS firmware downloads, allowing man-in-the-middle attackers to intercept firmware update traffic and potentially serve modified firmware files...
CVE-2025-65291
Aqara Hub devices including Hub M2 4.3.60027, Hub M3 4.3.60025, Camera Hub G3 4.1.90027 fail to validate server certificates in TLS connections for discovery services and CoAP gateway communications, enabling man-in-the-middle attacks on device control and monitoring...
D-Link DCS-F5614-L1 安全漏洞
The D-Link DCS-F5614-L1 is a network camera from China Youxun D-Link. A security vulnerability exists in the D-Link DCS-F5614-L1 that originates from unauthenticated access to camera configuration information, including account credentials, when accessing a specific URL...
Sony IPELA Network Camera 缓冲区错误漏洞
Sony IPELA Network Camera is a webcam from Sony Japan. A buffer error vulnerability exists in Sony IPELA Network Camera version 1.82.01, which stems from a stack buffer overflow in the ftpclient.cgi endpoint that could lead to remote code execution...
Aqara Camera Hub G3 安全漏洞
Aqara Camera Hub G3 is a smart surveillance camera from Aqara USA. A security vulnerability exists in Aqara Camera Hub G3 version 4.1.90027, Hub M2 version 4.3.60027, and Hub M3 version 4.3.60025, which stems from the failure to validate server certificates during HTTPS firmware downloads, which...
Huawei HarmonyOS camera framework module multithreaded conditional contention vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A multi-threaded conditional contention vulnerability exists in the Huawei HarmonyOS camera framework module, which can be exploited by attackers to cause an...
Huawei HarmonyOS camera framework module multi-threaded conditional contention vulnerability (CNVD-2026-00621)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A multi-threaded conditional contention vulnerability exists in the Huawei HarmonyOS camera framework module, which can be exploited by an attacker to cause...
PT-2025-50541
Name of the Vulnerable Software and Affected Versions Aqara Hub devices versions 4.1.9 0027, 4.3.6 0027, and 4.3.6 0025 Description A command injection issue exists in Aqara Hub devices, including Camera Hub G3, Hub M2, and Hub M3. This allows attackers to execute arbitrary commands with root...
CVE-2025-65297
Aqara Hub devices including Camera Hub G3 4.1.90027, Hub M2 4.3.60027, and Hub M3 4.3.60025 automatically collect and upload unencrypted sensitive information. Note that this occurs without disclosure or consent from the manufacturer...
CVE-2025-65296
NULL-pointer dereference vulnerabilities in Aqara Hub M2 4.3.60027, Hub M3 4.3.60025, and Camera Hub G3 4.1.90027 in the JSON processing enable denial-of-service attacks through malformed JSON inputs...