3 matches found
CVE-2025-12636
The Ubia camera ecosystem fails to adequately secure API credentials, potentially enabling an attacker to connect to backend services. The attacker would then be able to gain unauthorized access to available cameras, enabling the viewing of live feeds or modification of settings...
CVE-2017-7852
D-Link DCS cameras have a weak/insecure CrossDomain.XML file that allows sites hosting malicious Flash objects to access and/or change the device's settings via a CSRF attack. This is because of the 'allow-access-from domain' child element set to , thus accepting requests from any domain. If a...
PT-2017-17954 · D Link · Dcs-932Lb1 +7
Name of the Vulnerable Software and Affected Versions: D-Link DCS-933L versions prior to 1.13.05 D-Link DCS-5030L D-Link DCS-5020L D-Link DCS-2530L D-Link DCS-2630L D-Link DCS-930L D-Link DCS-932L D-Link DCS-932LB1 Description: The issue allows sites hosting malicious Flash objects to access and/...