CVE-2026-12527

CVE-2026-12527 affects Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803. Root cause: broken authorization boundary in the RTSP media delivery pipeline. This enables unauthenticated network actors to bypass the device’s credential-enforced live-view w...

CVE-2013-4985

Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream...

CVE-2025-1881 i-Drive i11/i12 Video Footage/Live Video Stream access control

A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Video Footage/Live Video Stream. The manipulation leads to improper access controls. The attack can be launched remotel...

The vulnerability of the Real-Time Streaming Protocol (RTSP) implementation of the D3D Security IP Camera D8801 software-based network IP camera allows a intruder to gain access to the video stream.

The vulnerability of the Real-Time Streaming Protocol RTSP implementation of the D3D Security IP Camera D8801 software-based network camera is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to gain access to the video stream using...

Longse NVR Security Vulnerability

Longse NVR is a series of network video recorders from China-based Longse Technology Longse. A security vulnerability exists in the Longse NVR that stems from transmitting a user's login and password to a remote control service without the use of any encryption, allowing an attacker to eavesdrop ...

BASETech GE-131 BT-1837836 Information Disclosure Vulnerability

The BASETech GE-131 BT-1837836 is a Wi-Fi IP CCTV camera. An information disclosure vulnerability exists in the BASETech GE-131 BT-1837836. An attacker can exploit the vulnerability to remotely access the video stream via an unrecorded user...

Design/Logic Flaw

Use of an undocumented user in BASETech GE-131 BT-1837836 firmware 20180921 allows remote attackers to view the video stream...

CVE-2013-2569

CVE-2013-2569 affects Zavio IP Cameras (firmware ≤ 1.6.03) where RTSP authentication is disabled by default, allowing remote unauthenticated access to the live video stream. Core Security advisory describes mitigations (enable RTSP authentication, review CGI access) but does not specify an exact ...

CVE-2013-4985

Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream...

CVE-2013-4985

Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream...

FLIR AX8 Thermal Camera 1.32.16 - RTSP Stream Disclosure

FLIR AX8 Thermal Camera 1.32.16 - RTSP Stream Disclosure Exploit Title: FLIR AX8 Thermal Camera 1.32.16 - RTSP Stream Disclosure Author: Gjoko 'LiquidWorm' Krstic @zeroscience Date: 2018-10-14 Vendor: FLIR Systems, Inc. Product web page: https://www.flir.com Affected version: Firmware: 1.32.16,...

FLIR Brickstream 3D+ - RTSP Stream Disclosure Vulnerability

Exploit for hardware platform in category web applications FLIR Systems FLIR Brickstream 3D+ Unauthenticated RTSP Stream Disclosure Vendor: FLIR Systems, Inc. Product web page: http://www.brickstream.com Affected version: Firmware: 2.1.742.1842 Api: 1.0.0 Node: 0.10.33 Onvif: 0.1.1.47 Summary: Th...

FLIR Systems FLIR Brickstream 3D+ Unauthenticated RTSP Stream Disclosure

Summary Thermal Imaging Camera For Continuous Condition and Safety Monitoring FLIR AX8 is a thermal sensor with imaging capabilities. Combining thermal and visual cameras in a small, affordable package, the AX8 provides continuous temperature monitoring and alarming capabilities to protec critica...

CVE-2018-17919

CVE-2018-17919 is supported by connected sources: XMeye P2P Cloud Server devices expose an undocumented user account named “default” with its default password, enabling login to view video streams. Multiple sources (ICSA, CNVD, SEC Consult / PACKETSTORM advisories, CVE listings) confirm this issu...

Vivotek IP Cameras RTSP Authentication Bypass

Vivotek IP cameras that could allow an unauthenticated remote attacker to bypass the RTSP basic authentication and access the video stream. Core Security - Corelabs Advisory http://corelabs.coresecurity.com Vivotek IP Cameras RTSP Authentication Bypass 1. Advisory Information Title: Vivotek IP...

Zavio IP Cameras Multiple Vulnerabilities

Zavio IP Cameras are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

D-Link IP Cameras - Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ D-Link IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: D-Link IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0303 Advisory URL:...