Lucene search
K

1264 matches found

NVD
NVD
added 2022/04/26 4:15 a.m.24 views

CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

9.8CVSS0.66317EPSS
Exploits6References5
ATTACKERKB
ATTACKERKB
added 2022/04/26 4:15 a.m.1 views

CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

9.8CVSS7.8AI score0.66317EPSS
Exploits6References7
OSV
OSV
added 2022/04/26 4:15 a.m.32 views

CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

9.8CVSS7.7AI score
Exploits0References5
Prion
Prion
added 2022/04/26 4:15 a.m.33 views

Remote code execution

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

7.5CVSS9.7AI score0.66317EPSS
Exploits6References5Affected Software1
UbuntuCve
UbuntuCve
added 2022/04/26 4:15 a.m.48 views

CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

9.8CVSS7.8AI score0.66317EPSS
Exploits6References6
AlpineLinux
AlpineLinux
added 2022/04/26 4:15 a.m.53 views

CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

9.8CVSS5.2AI score0.66317EPSS
Exploits6
OSV
OSV
added 2022/04/26 4:15 a.m.3 views

UBUNTU-CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

9.8CVSS7.9AI score0.66317EPSS
Exploits6References7
CVE
CVE
added 2022/04/26 3:15 a.m.169 views

CVE-2022-29806

CVE-2022-29806 affects ZoneMinder prior to 1.36.13 (and 1.37.11). A path-traversal flaw combined with an arbitrary log file write in the language/debug log path allows attackers to write and execute arbitrary code, enabling remote command execution. There is public exploitation evidence (GitHub e...

9.8CVSS9.6AI score0.66317EPSS
Exploits6References5Affected Software1
Cvelist
Cvelist
added 2022/04/26 3:15 a.m.27 views

CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

10AI score0.66317EPSS
Exploits6References5
Debian CVE
Debian CVE
added 2022/04/26 3:15 a.m.63 views

CVE-2022-29806

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability...

9.8CVSS5.2AI score0.66317EPSS
Exploits6
CNNVD
CNNVD
added 2022/04/26 12:0 a.m.25 views

ZoneMinder 路径遍历漏洞

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras, etc. A remote code execution vulnerability exists in versions prior to ZoneMinder 1.36.13, which can be exploited by attackers to cause arbitrary code execution...

9.8CVSS9.4AI score0.66317EPSS
Exploits6References7
CNVD
CNVD
added 2022/04/01 12:0 a.m.28 views

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57825)

ZoneMinder is an open source video surveillance software system. ZoneMinder 1.32.3 and previous versions have a cross-site scripting vulnerability, which stems from the program not being properly filtered, and can be exploited by remote attackers to execute HTML or JavaScript code with the help o...

6.1CVSS3.1AI score0.009EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.25 views

ZoneMinder Competition Conditions Vulnerability

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras, etc. A competing condition vulnerability exists in ZoneMinder 1.32.3 and prior versions, which can be exploited by remote attackers to access and modify records...

7.5CVSS4.5AI score0.00914EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.18 views

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57832)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras, etc. A cross-site scripting vulnerability exists in ZoneMinder 1.32.3 and earlier versions, which stems from the fact that the program is not properly filtered and can be exploited by...

6.1CVSS2.7AI score0.00873EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.26 views

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57836)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras, etc. A cross-site scripting vulnerability exists in ZoneMinder 1.32.3 and prior versions, which stems from the program not being properly filtered and could be exploited by remote...

6.1CVSS4.5AI score0.009EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.28 views

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57841)

ZoneMinder is an open source video surveillance software system. ZoneMinder 1.32.3 and earlier versions have a cross-site scripting vulnerability that stems from the fact that the program is not properly filtered and can be exploited by remote attackers to execute arbitrary HTML or JavaScript cod...

6.1CVSS3.3AI score0.009EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.21 views

ZoneMinder Cross-Site Request Forgery Vulnerability (CNVD-2022-57808)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras, etc. A cross-site request forgery vulnerability exists in ZoneMinder 1.32.3 and prior versions, which can be exploited by remote attackers to perform unauthorized operations...

8.8CVSS4.1AI score0.00655EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.23 views

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57826)

ZoneMinder is an open source video surveillance software system. ZoneMinder 1.32.3 and earlier versions have a cross-site scripting vulnerability that stems from the fact that the program is not properly filtered and can be exploited by remote attackers with the 'newMonitorMethod' parameter to...

6.1CVSS2.9AI score0.00878EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.28 views

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57834)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras, etc. A cross-site scripting vulnerability exists in ZoneMinder 1.32.3 and prior versions, which stems from the fact that the program does not validate input or filter output, and can b...

6.1CVSS3.6AI score0.009EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.20 views

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57833)

ZoneMinder is an open source video surveillance software system. ZoneMinder 1.32.3 and earlier versions have a cross-site scripting vulnerability, which stems from the fact that the program is not properly filtered and can be exploited by remote attackers to execute HTML or JavaScript code with t...

6.1CVSS2.9AI score0.009EPSS
Exploits1References1
Rows per page
Query Builder