Lucene search
+L

78 matches found

NVD
NVD
added 2025/12/29 3:16 p.m.3 views

CVE-2025-60458

UxPlay 1.72 contains a double free vulnerability in its RTSP request handling. A specially crafted RTSP TEARDOWN request can trigger multiple calls to free on the same memory address, potentially causing a Denial of Service...

6.5CVSS0.00273EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.4 views

PT-2025-53726

UxPlay 1.72 contains a double free vulnerability in its RTSP request handling. A specially crafted RTSP TEARDOWN request can trigger multiple calls to free on the same memory address, potentially causing a Denial of Service...

6.5CVSS6.9AI score0.00273EPSS
Exploits1References11
Vulnrichment
Vulnrichment
added 2025/12/29 12:0 a.m.2 views

CVE-2025-60458

UxPlay 1.72 contains a double free vulnerability in its RTSP request handling. A specially crafted RTSP TEARDOWN request can trigger multiple calls to free on the same memory address, potentially causing a Denial of Service...

6.5AI score0.00273EPSS
Exploits1References1
NVD
NVD
added 2025/12/24 8:15 p.m.6 views

CVE-2019-25248

Beward N100 M2.1.6.04C014 contains an unauthenticated vulnerability that allows remote attackers to access live video streams without credentials. Attackers can directly retrieve the camera's RTSP stream by exploiting the lack of authentication in the video access mechanism...

8.7CVSS0.00418EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/24 7:28 p.m.4 views

CVE-2019-25248 Beward N100 M2.1.6 Unauthenticated RTSP Video Stream Disclosure

Beward N100 M2.1.6.04C014 contains an unauthenticated vulnerability that allows remote attackers to access live video streams without credentials. Attackers can directly retrieve the camera's RTSP stream by exploiting the lack of authentication in the video access mechanism...

8.7CVSS6.9AI score0.00418EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/24 7:28 p.m.26 views

CVE-2019-25248 Beward N100 M2.1.6 Unauthenticated RTSP Video Stream Disclosure

Beward N100 M2.1.6.04C014 contains an unauthenticated vulnerability that allows remote attackers to access live video streams without credentials. Attackers can directly retrieve the camera's RTSP stream by exploiting the lack of authentication in the video access mechanism...

8.7CVSS0.00418EPSS
Exploits1References3
EUVD
EUVD
added 2025/12/23 12:30 a.m.6 views

EUVD-2025-204759

An issue was discovered in Xiongmai XM530 IP cameras on firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06. The GetStreamUri exposes RTSP URIs containing hardcoded credentials enabling direct unauthorized video stream access...

7.5CVSS9.4AI score0.00373EPSS
Exploits3References4
CVE
CVE
added 2025/12/22 12:0 a.m.28 views

CVE-2025-65857

The CVE-2025-65857 affects Xiongmai XM530 IP cameras (firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06). The GetStreamUri ONVIF endpoint exposes RTSP URIs containing hardcoded credentials, enabling direct unauthorized video streaming access. Impact is unauthorized access to live streams; CV...

7.5CVSS9.3AI score0.00373EPSS
Exploits3References2Affected Software1
NVD
NVD
added 2025/12/16 3:15 a.m.29 views

CVE-2025-14746

A vulnerability has been found in Ningyuanda TC155 57.0.2.0. The affected element is an unknown function of the component RTSP Live Video Stream Endpoint. Such manipulation leads to improper authentication. The attack must be carried out from within the local network. The exploit has been disclos...

6.5CVSS0.00992EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/16 2:2 a.m.38 views

CVE-2025-14747 Ningyuanda TC155 RTSP Service denial of service

A vulnerability was found in Ningyuanda TC155 57.0.2.0. The impacted element is an unknown function of the component RTSP Service. Performing manipulation results in denial of service. The attack must originate from the local network. The exploit has been made public and could be used. The vendor...

5.3CVSS0.00671EPSS
Exploits1References4
CVE
CVE
added 2025/12/16 2:2 a.m.17 views

CVE-2025-14746

CVE-2025-14746 concerns Ningyuanda TC155 57.0.2.0, specifically the RTSP Live Video Stream Endpoint. The vulnerability is an improper authentication issue in an unknown function of that component, allowing an attacker on the same local network to bypass authentication. Multiple sources (NVD, Red ...

6.5CVSS5.8AI score0.00992EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2025/12/09 9:15 p.m.8 views

CVE-2021-47727

Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attackers to access live video streams without authentication. Attackers can directly connect to RTP/RTSP or M-JPEG streams by requesting specific endpoints like p1.mjpg or p1.264 to view camera footage...

8.7CVSS0.00427EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/11/26 4:56 p.m.9 views

CVE-2025-62674

The affected product allows unauthenticated access to Real Time Streaming Protocol RTSP services, which may allow an attacker unauthorized access to camera configuration information...

7CVSS7AI score0.00153EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/20 8:37 p.m.20 views

CVE-2025-62674 Missing Authentication for RTSP in iCam Cameras

The affected product allows unauthenticated access to Real Time Streaming Protocol RTSP services, which may allow an attacker unauthorized access to camera configuration information...

7CVSS0.00153EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-32518

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00231EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-38382

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Live555 through 1.08 does not handle Matroska and Ogg files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and...

6.5CVSS6.8AI score0.0119EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:50 a.m.7 views

CVE-2023-28898

The Real-Time Streaming Protocol implementation in the MIB3 infotainment incorrectly handles requests to /logs URI, when the id parameter equals to zero. This issue allows an attacker connected to the in-vehicle Wi-Fi network to cause denial-of-service of the infotainment system, when the certain...

5.3CVSS6.8AI score0.00231EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/05 12:0 a.m.8 views

The vulnerability of the Real-Time Streaming Protocol (RTSP) implementation of the D3D Security IP Camera D8801 software-based network IP camera allows a intruder to gain access to the video stream.

The vulnerability of the Real-Time Streaming Protocol RTSP implementation of the D3D Security IP Camera D8801 software-based network camera is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to gain access to the video stream using...

7.8CVSS5.5AI score0.00492EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/04 12:46 p.m.13 views

CVE-2024-47790 Missing Authorization Vulnerability

UNSUPPORTED WHEN ASSIGNED This vulnerability exists in D3D Security IP Camera D8801 due to usage of insecure Real-Time Streaming Protocol RTSP version for live video streaming. A remote attacker could exploit this vulnerability by crafting a RTSP packet leading to unauthorized access to live feed...

8.7CVSS6.5AI score0.00492EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/04 12:46 p.m.24 views

CVE-2024-47790 Missing Authorization Vulnerability

UNSUPPORTED WHEN ASSIGNED This vulnerability exists in D3D Security IP Camera D8801 due to usage of insecure Real-Time Streaming Protocol RTSP version for live video streaming. A remote attacker could exploit this vulnerability by crafting a RTSP packet leading to unauthorized access to live feed...

8.7CVSS0.00492EPSS
Exploits0References1
Rows per page
Query Builder