Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/03/10 8:10 a.m.4 views

CVE-2026-3797

A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The impacted element is the function uploadFile of the file /src/com/tiandy/easy7/core/rest/CLSRESTFile.java. The manipulation of the argument fileName leads to unrestricted upload. The attack may be...

8.8CVSS6.3AI score0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/09 2:32 a.m.3 views

CVE-2026-3797 Tiandy Video Surveillance System 视频监控平台 CLS_REST_File.java uploadFile unrestricted upload

A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The impacted element is the function uploadFile of the file /src/com/tiandy/easy7/core/rest/CLSRESTFile.java. The manipulation of the argument fileName leads to unrestricted upload. The attack may be...

6.5CVSS5.5AI score0.00355EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/09 2:32 a.m.36 views

CVE-2026-3797 Tiandy Video Surveillance System 视频监控平台 CLS_REST_File.java uploadFile unrestricted upload

A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The impacted element is the function uploadFile of the file /src/com/tiandy/easy7/core/rest/CLSRESTFile.java. The manipulation of the argument fileName leads to unrestricted upload. The attack may be...

6.5CVSS0.00355EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/09 2:32 a.m.2 views

CVE-2026-3797

A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The impacted element is the function uploadFile of the file /src/com/tiandy/easy7/core/rest/CLSRESTFile.java. The manipulation of the argument fileName leads to unrestricted upload. The attack may be...

6.5CVSS5.5AI score0.00355EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/09 2:32 a.m.11 views

CVE-2026-3797

Tiandy Video Surveillance System 7.17.0 is affected by a vulnerability in CLS_REST_File.java uploadFile where manipulating the fileName argument enables unrestricted file upload. The issue can be triggered remotely and public exploits are disclosed. Connected sources confirm the affected componen...

8.8CVSS6.3AI score0.00355EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/24 1:33 p.m.6 views

CVE-2026-2985

A security flaw has been discovered in Tiandy Video Surveillance System 视频监控平台 7.17.0. This impacts the function downloadImage of the file /com/tiandy/easy7/core/bo/CLSBODownLoad.java. Performing a manipulation of the argument urlPath results in server-side request forgery. The attack is possible...

6.5CVSS5.2AI score0.00297EPSS
Exploits0References1
Rows per page
Query Builder