CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2 days ago•5 views

libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding

A flaw was found in libexif. An integer underflow vulnerability in the size checking mechanism for Fuji and Olympus MakerNote decoding could allow attackers to exploit programs using libexif. This could lead to a Denial of Service DoS by crashing the program or result in information disclosure,...

7.1CVSS5.8AI score0.00008EPSS

Exploits0References5

CVE•added 3 days ago•7 views

CVE-2026-30650

Vivotek FD8136 cameras (firmware FD8136-VVTK-0300a) expose a post-authentication remote buffer overflow in the /cgi-bin/admin/eventtask.cgi endpoint. An authenticated attacker can remotely execute arbitrary code with root privileges. The issue is characterized by CVE-2026-30650 with a high impact...

8.8CVSS6.4AI score0.00386EPSS

Exploits0References2Affected Software1

EUVD•added 3 days ago•7 views

EUVD-2026-33967

6.4AI score0.00386EPSS

Exploits0References2

Positive Technologies•added 3 days ago•7 views

PT-2026-45771

6.4AI score0.00386EPSS

Cvelist•added 3 days ago•35 views

CVE-2026-30652

A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as root on the device...

0.00187EPSS

Exploits0References2

NVD•added last week•7 views

CVE-2026-5386

The affected KMW CCTV Security Cameras are vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administrator password to a known value without authentication, granting full access to the camera feeds and settings...

9.1CVSS0.0006EPSS

Vulnrichment•added 2026/05/29 4:25 p.m.•9 views

CVE-2026-5386 KMW CCTV Security Cameras Unverified Password Change

CVE•added 2026/05/29 4:25 p.m.•16 views

CVE-2026-5386

CVE-2026-5386 concerns KMW CCTV Security Cameras with a critical unauthenticated password reset that lets an attacker remotely reset the administrator password to a known value, granting full access to feeds and settings. The CVSS v3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N) yields a base sc...

EUVD•added 2026/05/29 4:25 p.m.•6 views

EUVD-2026-33359

Cvelist•added 2026/05/29 4:25 p.m.•27 views

CVE-2026-5386 KMW CCTV Security Cameras Unverified Password Change

9.1CVSS0.0006EPSS

ATTACKERKB•added 2026/05/29 4:25 p.m.•6 views

CVE-2026-5386

Exploits0References4Affected Software2

Positive Technologies•added 2026/05/29 12:0 a.m.•8 views

PT-2026-44967

Name of the Vulnerable Software and Affected Versions KMW CCTV Security Cameras affected versions not specified Description An issue exists that allows an unauthenticated attacker to remotely reset the administrator password to a known value. This action grants full access to the camera settings...

ICS•added 2026/05/28 6:0 a.m.•5 views

Exploits0References6

KMW CCTV Security Cameras

ADVISORY SUMMARY Successful exploitation of this vulnerability may grant full unauthorized access to camera feeds and settings. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure for all...

RedHat Linux•added 2026/05/26 3:35 p.m.•7 views

Exploits0References13

libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding

7.1CVSS5.7AI score0.00008EPSS

Exploits0References5

Vulnrichment•added 2026/05/25 11:16 a.m.•5 views

CVE-2026-7766 Path Traversal in Kenik cameras

Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file path and read corresponding files located on the server. The issue was fixed in version 2026-04-23 of the KG-5260xxxx-IL-G2 cameras. Rest of the produc...

8.3CVSS6AI score0.00048EPSS

CVE•added 2026/05/25 11:16 a.m.•15 views

CVE-2026-7766

CVE-2026-7766 affects Kenik Camera management Panel with a Path Traversal vulnerability. An unauthenticated attacker can issue a GET request with an arbitrary file path and read files on the server. The issue is fixed in version 2026-04-23 for KG-5260xxxx-IL-(G)2 cameras; other products were fixe...

8.3CVSS6AI score0.00048EPSS

ATTACKERKB•added 2026/05/25 11:16 a.m.•7 views

CVE-2026-7766

8.3CVSS6AI score0.00048EPSS

Exploits0References2

Cvelist•added 2026/05/25 11:16 a.m.•30 views

CVE-2026-7766 Path Traversal in Kenik cameras

8.3CVSS0.00048EPSS

NVD•added 2026/05/20 4:16 p.m.•9 views

CVE-2026-8598

An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about the camera such as open services and camera account credentials...

9.1CVSS0.0008EPSS