Lucene search
K

18 matches found

Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.5 views

PT-2026-24005

Name of the Vulnerable Software and Affected Versions Tiandy Video Surveillance System version 7.17.0 Description A security issue exists in Tiandy Video Surveillance System that allows for unrestricted file uploads. This is due to the manipulation of the fileName argument within the uploadFile...

8.8CVSS6.4AI score0.00355EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/03/09 12:0 a.m.12 views

Tiandy Video Surveillance System 代码问题漏洞

Tiandy Video Surveillance System is a video monitoring system developed by Tiandy Company in China. Version 7.17.0 of Tiandy Video Surveillance System has a code vulnerability. This vulnerability stems from incorrect handling of the parameter fileName in the file...

8.8CVSS6.8AI score0.00355EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/02/23 10:32 a.m.4 views

CVE-2026-2985 Tiandy Video Surveillance System 视频监控平台 CLSBODownLoad.java downloadImage server-side request forgery

A security flaw has been discovered in Tiandy Video Surveillance System 视频监控平台 7.17.0. This impacts the function downloadImage of the file /com/tiandy/easy7/core/bo/CLSBODownLoad.java. Performing a manipulation of the argument urlPath results in server-side request forgery. The attack is possible...

6.5CVSS6.3AI score0.00297EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/23 12:0 a.m.11 views

PT-2026-21514

A security flaw has been discovered in Tiandy Video Surveillance System 视频监控平台 7.17.0. This impacts the function downloadImage of the file /com/tiandy/easy7/core/bo/CLSBODownLoad.java. Performing a manipulation of the argument urlPath results in server-side request forgery. The attack is possible...

6.5CVSS5.2AI score0.00297EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/23 12:0 a.m.8 views

Tiandy Video Surveillance System 代码问题漏洞

Tiandy Video Surveillance System is a video monitoring system developed by Tiandy Company in China. Version 7.17.0 of Tiandy Video Surveillance System has a code vulnerability. This vulnerability stems from improper handling of the parameter urlPath in the...

6.5CVSS6.7AI score0.00297EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-5042

Malware in sbrugna...

5CVSS6.4AI score0.03499EPSS
Exploits1References8
OSV
OSV
added 2025/05/14 3:54 p.m.8 views

CVE-2025-47782 motionEye vulnerable to RCE in add_camera Function Due to unsafe command execution

motionEye is an online interface for the software motion, a video surveillance program with motion detection. In versions 0.43.1b1 through 0.43.1b3, using a constructed camera device path with the add/addcamera motionEye web API allows an attacker with motionEye admin user credentials to execute...

9.3CVSS6.9AI score0.00407EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2024/09/06 12:0 a.m.347 views

C-MOR Video Surveillance 5.2401 / 6.00PL01 Command Injection

Advisory ID: SYSS-2024-030 Product: C-MOR Video Surveillance Manufacturer: za-internet GmbH Affected Versions: 5.2401, 6.00PL01 Tested Versions: 5.2401, 6.00PL01 Vulnerability Type: OS Command Injection CWE-78 Risk Level: High Solution Status: Open Manufacturer Notification: 2024-04-05 Solution...

7.4AI score0.02612EPSS
Exploits2
OSV
OSV
added 2023/11/27 2:15 a.m.1 views

CVE-2023-6308

A vulnerability, which was classified as critical, has been found in Xiamen Four-Faith Video Surveillance Management System 2016/2017. Affected by this issue is some unknown functionality of the component Apache Struts. The manipulation leads to unrestricted upload. The attack may be launched...

8.8CVSS5.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/11/27 12:0 a.m.3 views

PT-2023-32608 · Apache +1 · Apache Struts +1

Name of the Vulnerable Software and Affected Versions: Xiamen Four-Faith Video Surveillance Management System versions 2016 through 2017 Description: A critical issue has been found in the Apache Struts component of the system, allowing for unrestricted upload. The attack can be launched remotely...

8.8CVSS6.5AI score0.00967EPSS
Exploits1References5
OSV
OSV
added 2023/07/21 2:15 a.m.3 views

CVE-2023-3805

A vulnerability, which was classified as critical, has been found in Xiamen Four Letter Video Surveillance Management System up to 20230712. This issue affects some unknown processing in the library UserInfoAction.class of the component Login. The manipulation leads to improper authorization. The...

9.8CVSS5.2AI score0.00776EPSS
Exploits1References3
CNVD
CNVD
added 2021/06/10 12:0 a.m.6 views

Unauthorized Access Vulnerability in Network Video Surveillance System of Tianmai Technology

Tianmai Technology is a national high-tech enterprise focusing on the field of intelligent public transportation. The company's main business is to provide comprehensive solutions for urban bus operation, management and service based on Telematics technology. There is an unauthorized access...

6.6AI score
Exploits0
CNVD
CNVD
added 2020/12/12 12:0 a.m.2 views

Weak Password Vulnerability in Tianmai Technology's Network Video Surveillance System

Tianmai Technology is a national high-tech enterprise focusing on the field of intelligent public transportation, the company's main business is to provide comprehensive solutions for urban bus operation, management and service based on Telematics technology. There is a weak password vulnerabilit...

6.8AI score
Exploits0
CNVD
CNVD
added 2020/03/25 12:0 a.m.1 views

Arbitrary File Read Vulnerability in AppVision's Video Surveillance System

Applusoft specializes in UHD, ultra-long focus, multi-spectral, thermal imaging products, technical services and overall customized solutions. AppVision's video surveillance system has an arbitrary file reading vulnerability, the vulnerability is due to its video surveillance backend does not do...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2019/08/01 9:13 a.m.69 views

Cisco 'Knowingly' Sold Hackable Video Surveillance System to U.S. Government

Cisco Systems has agreed to pay $8.6 million to settle a lawsuit that accused the company of knowingly selling video surveillance system containing severe security vulnerabilities to the U.S. federal and state government agencies. It's believed to be the first payout on a 'False Claims Act' case...

9CVSS0.7AI score0.10188EPSS
Exploits0
Prion
Prion
added 2011/09/12 12:40 p.m.13 views

Directory traversal

Directory traversal vulnerability in geohttpserver in Geovision Digital Video Surveillance System 8.2 allows remote attackers to read arbitrary files via a .. dot dot in a GET request...

5CVSS7.2AI score0.03499EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2011/09/09 11:0 p.m.41 views

CVE-2009-5087

CVE-2009-5087 refers to a directory traversal vulnerability in Geovision Digital Video Surveillance System 8.2, affecting the geohttpserver component. The issue allows remote attackers to read arbitrary files via a .. (dot-dot) in a GET request. The primary affected product is Geovision’s DVSS 8....

5CVSS6.8AI score0.03499EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2005/05/14 4:0 a.m.16 views

CVE-2005-1552

GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0, when set to create JPEG images, does not properly protect an image even when a password and username is assigned, which may allow remote attackers to gain sensitive information via a direct request to the image...

5CVSS6.7AI score0.03302EPSS
Exploits1References6
Rows per page
Query Builder