DEBIAN-CVE-2020-36131

AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/ratehist.c...

Unauthorized Access Vulnerability in AXIS Q7424-R Video Encoder

Axis is an IT company that specializes in providing web video solutions. An unauthorized access vulnerability exists in the AXIS Q7424-R Video Encoder, which can be exploited by attackers to obtain sensitive information...

Unauthorized Access Vulnerability in AXIS M7014 Video Encoder

Axis is an IT company that specializes in providing web video solutions. An unauthorized access vulnerability exists in AXIS M7014 Video Encoder, which can be exploited by attackers to obtain sensitive information...

Unauthorized Access Vulnerability in AXIS P7214 Video Encoder

Axis is an IT company that specializes in providing web video solutions. An unauthorized access vulnerability exists in AXIS P7214 Video Encoder, which can be exploited by attackers to obtain sensitive information...

DEBIAN-CVE-2020-22028

Buffer Overflow vulnerability exists in FFmpeg 4.2 in filtervertically8 at libavfilter/vfavgblur.c, which could cause a remote Denial of Service...

DEBIAN-CVE-2020-22021

Buffer Overflow vulnerability in FFmpeg 4.2 at filteredges function in libavfilter/vfyadif.c, which could let a remote malicious user cause a Denial of Service...

Teradici PCoIP Graphics Agent 代码问题漏洞

Teradici PCoIP Graphics Agent is an agent program from Teradici Canada that delivers GPU-enabled physical and virtual workstations to end users via a remote client. A security vulnerability exists in Teradici PCoIP Graphics Agent version 21.03. The vulnerability stems from the program not...

Szuray Video Encoder Firmware Command Injection (CVE-2020-24217)

A command injection vulnerability exists in Szuray Video Encoder Firmware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

HiSilicon Video Encoder Command Injection

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - RCE via unauthenticated command injection Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24217 Vendors: URayTech, J-Tech...

HiSilicon Video Encoder Malicious Firmware Code Execution

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - RCE via unauthenticated upload of malicious firmware Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24217 Vendors: URayTech,...

HiSilicon Video Encoder Buffer Overflow / Denial Of Service

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - unauthenticated RTSP buffer overflow DoS Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24214 Vendors: URayTech, J-Tech Digita...

IPTV encoder devices contain multiple vulnerabilities

Overview Multiple vulnerabilities exist in various Video Over IP Internet Protocol encoder devices, also known as IPTV/H.264/H.265 video encoders. These vulnerabilities allow an unauthenticated remote attacker to execute arbitrary code and perform other unauthorized actions on a vulnerable system...

Apple tvOS, iOS and iPadOS AVEVideoEncoder Component Arbitrary Code Execution Vulnerability

Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple iPadOS is an operating system for iPad tablets. avevideoEncoder is one of the avevideo encoder components. AVEVideoEncoder is one of the AVE video encoder components. A security...

openSUSE Security Update : ffmpeg-4 (openSUSE-2020-24)

This update for ffmpeg-4 fixes the following issues : ffmpeg-4 was updated to version 4.0.5, fixes boo1133153 - CVE-2019-11339: The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 allowed remote attackers to cause a denial of service out-of-array access or possibly have...

AVEVideoEncoder Component Memory Corruption Vulnerability in Multiple Apple Products

Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple iPadOS is an operating system for iPad tablets. avevideoEncoder is one of the avevideo encoder components. AVEVideoEncoder is one of the AVE video encoder components. A security...

ACTi ACD-2100 Video Encoder Remote Command Execution Exploit

Exploit for hardware platform in category web applications !/usr/bin/perl ACTi ACD-2100 Video Encoder Remote Command Execution Exploit Copyright 2019 c Todor Donev Firmware Version = A1D-220-V3.08.08-AC Production ID = ACD2100-08E-X-00498 Factory Default Type = NTSC, Composite, Two Ways Audio 0x7...

ACTi ACD-2100 Video Encoder Remote Command Execution

!/usr/bin/perl ACTi ACD-2100 Video Encoder Remote Command Execution Exploit Copyright 2019 c Todor Donev Firmware Version = A1D-220-V3.08.08-AC Production ID = ACD2100-08E-X-00498 Factory Default Type = NTSC, Composite, Two Ways Audio 0x71 Company Name = ACTi Corporation WEB Site = www.acti.com...

Teradek Cube 7.3.6 - Cross-Site Request Forgery

Teradek Cube 7.3.6 - Cross-Site Request Forgery input type="submit...

CVE-2017-17767

In all Qualcomm products with Android releases from CAF using the Linux kernel, the IL client may free a buffer OMX Video Encoder Component and then subsequently access the already freed buffer...

CVE-2017-17767

In all Qualcomm products with Android releases from CAF using the Linux kernel, the IL client may free a buffer OMX Video Encoder Component and then subsequently access the already freed buffer...