Lucene search
K

242 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.6 views

CVE-2025-31703

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.8AI score0.00231EPSS
Exploits0References1
NVD
NVD
added 2026/03/20 10:16 a.m.4 views

CVE-2026-33125

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. In versions 0.16.2 and below, users with the viewer role can delete admin and low-privileged user accounts. Exploitation can lead to DoS and affect data integrity. This issue has been patched in version...

8.1CVSS0.00243EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.12 views

PT-2026-26598

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Versions prior to 0.17.0-beta1 allow any authenticated user to change their own password without verifying the current password through the /users/username/password endpoint. Changing a password does not...

8.6CVSS5.8AI score0.00247EPSS
Exploits0References5
NVD
NVD
added 2026/03/18 8:16 a.m.4 views

CVE-2025-31703

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.14 views

PT-2026-26031

A vulnerability found in Dahua NVR/XVR device. A third-party malicious attacker with physical access to the device may gain access to a restricted shell via the serial port, and bypasses the shell's authentication mechanism to escalate privileges...

2.4CVSS5.8AI score0.00231EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/07 7:30 p.m.6 views

CVE-2026-25643

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...

9.1CVSS5.5AI score0.02874EPSS
Exploits8References1
VulnCheck KEV
VulnCheck KEV
added 2026/02/01 12:0 a.m.12 views

VulnCheck KEV: CVE-2021-41419

QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization...

9.8CVSS5.9AI score0.06757EPSS
In wildExploits1References2
RedhatCVE
RedhatCVE
added 2026/01/13 10:52 p.m.6 views

CVE-2026-0854

Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device...

8.8CVSS7.6AI score0.01025EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

Hikvision NVR/DVR Devices 安全漏洞

Hikvision NVR/DVR Devices are a series of network cameras from Hikvision, a Chinese company. A security vulnerability exists in Hikvision NVR/DVR Devices that stems from a stack overflow in the device's search and discovery function, which could allow an attacker on the same LAN to cause the devi...

8.8CVSS6.1AI score0.00323EPSS
Exploits0References1
CVE
CVE
added 2026/01/12 5:58 a.m.15 views

CVE-2026-0854

The CVE concerns Merit LILIN DVR/NVR devices that expose an OS Command Injection vulnerability. The affected component is the device OS on Merit LILIN DVR/NVR models; the root cause is an OS command injection vector that allows an authenticated remote attacker to inject and run arbitrary OS comma...

8.8CVSS7.3AI score0.01025EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/12 5:58 a.m.5 views

CVE-2026-0854 Merit LILIN|NVR - OS Command Injection

Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device...

8.8CVSS7.3AI score0.01025EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/12 5:58 a.m.30 views

CVE-2026-0854 Merit LILIN|NVR - OS Command Injection

Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the device...

8.8CVSS0.01025EPSS
Exploits0References2
NVD
NVD
added 2026/01/12 4:15 a.m.5 views

CVE-2026-0853

Certain NVR models developed by A-Plus Video Technologies has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access the debug page and obtain device status information...

6.9CVSS0.00267EPSS
Exploits0References2
CVE
CVE
added 2026/01/12 3:26 a.m.14 views

CVE-2026-0853

CVE-2026-0853 affects certain NVR models from A-Plus Video Technologies. The underlying issue is a Sensitive Data Exposure that can be exploited by unauthenticated remote attackers to access the device’s debug page and retrieve device status information. Impact is described as exposure of status ...

6.9CVSS6.7AI score0.00267EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/12 3:26 a.m.5 views

EUVD-2026-1953

Certain NVR models developed by A-Plus Video Technologies has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access the debug page and obtain device status information...

6.9CVSS6.6AI score0.00267EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/12 3:26 a.m.26 views

CVE-2026-0853 A-Plus Video Technologies|NVR - Sensitive Data Exposure

Certain NVR models developed by A-Plus Video Technologies has a Sensitive Data Exposure vulnerability, allowing unauthenticated remote attackers to access the debug page and obtain device status information...

6.9CVSS0.00267EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/12 12:0 a.m.11 views

PT-2026-2043

Name of the Vulnerable Software and Affected Versions A-Plus Video Technologies NVR models affected versions not specified Description A security issue exists in certain NVR models developed by A-Plus Video Technologies that allows unauthenticated remote attackers to access the debug page...

6.9CVSS6.2AI score0.00267EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/01/12 12:0 a.m.4 views

Merit LILIN DVR Series和Merit LILIN NVR Series 操作系统命令注入漏洞

The Merit LILIN DVR Series and Merit LILIN NVR Series are both products of Merit LILIN Corporation of Taiwan, China.The Merit LILIN DVR Series is a series of digital video recorders.The Merit LILIN NVR Series is a series of network video recorders. The Merit LILIN DVR Series and Merit LILIN NVR...

8.8CVSS7.8AI score0.01025EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/12 12:0 a.m.6 views

A-Plus Video多款产品 安全漏洞

The A-Plus Video AP-RM864P, among others, is a network video recorder from A-Plus Video of Taiwan, China. A security vulnerability exists in a number of A-Plus Video products. The vulnerability stems from sensitive data leakage and could allow an unauthenticated, remote attacker to access debug...

6.9CVSS6.6AI score0.00267EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 8:58 a.m.7 views

CVE-2023-45670

Frigate is an open source network video recorder. Prior to version 0.13.0 Beta 3, the config/save and config/set endpoints of Frigate do not implement any CSRF protection. This makes it possible for a request sourced from another site to update the configuration of the Frigate server e.g. via...

7.5CVSS6.6AI score0.00393EPSS
Exploits1References1
Rows per page
Query Builder