CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

52 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2013-3475

Malware in sbrugna...

6.8CVSS6.2AI score0.00375EPSS

Exploits5References3

RedhatCVE•added 2025/05/22 6:12 a.m.•5 views

CVE-2013-3686

cgi-bin/operator/param in AirLive WL2600CAM and possibly other camera models allows remote attackers to obtain the administrator password via a list action...

10CVSS7AI score0.39574EPSS

Exploits5References1

RedhatCVE•added 2025/05/22 4:53 a.m.•4 views

CVE-2013-3541

Directory traversal vulnerability in cgi-bin/admin/fileread in AirLive WL2600CAM and possibly other camera models allows remote attackers to read arbitrary files via a .. dot dot in the READ.filePath parameter...

7.8CVSS7AI score0.12976EPSS

Exploits5References1

RedhatCVE•added 2025/05/22 1:52 a.m.•6 views

CVE-2013-3687

AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models use cleartext to store sensitive information, which allows attackers to obtain passwords, user names, and other sensitive information by reading an unspecified backup file...

7.8CVSS6.5AI score0.10723EPSS

Exploits4References1

RedhatCVE•added 2025/05/22 1:44 a.m.•7 views

CVE-2013-3540

Cross-site request forgery CSRF vulnerability in cgi-bin/admin/usrgrp.cgi in AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models allows remote attackers to hijack the authentication of administrators for requests that add users...

6.8CVSS7.5AI score0.00375EPSS

Exploits5References1

NVD•added 2019/12/11 7:15 p.m.•8 views

CVE-2013-3691

AirLive POE-2600HD allows remote attackers to cause a denial of service device reset via a long URL...

7.8CVSS7.4AI score0.1441EPSS

Exploits5References2

Prion•added 2019/12/11 7:15 p.m.•11 views

Design/Logic Flaw

AirLive POE-2600HD allows remote attackers to cause a denial of service device reset via a long URL...

7.8CVSS7.1AI score0.1441EPSS

Exploits5References2

Cvelist•added 2019/12/11 6:22 p.m.•10 views

CVE-2013-3691

AirLive POE-2600HD allows remote attackers to cause a denial of service device reset via a long URL...

7.4AI score0.1441EPSS

Exploits5References2

EUVD•added 2019/12/11 6:22 p.m.•2 views

EUVD-2013-3624

AirLive POE-2600HD allows remote attackers to cause a denial of service device reset via a long URL...

7.8CVSS7.3AI score0.1441EPSS

Exploits5References2

CVE•added 2019/12/11 6:22 p.m.•59 views

CVE-2013-3691

CVE-2013-3691 affects AirLive POE-2600HD devices. The vulnerability allows a remote attacker to cause a denial of service (device reset) by sending a long URL. The public records describe the impact as availability loss with no confidentiality/integrity impact. No technical details beyond this ar...

7.8CVSS7.3AI score0.1441EPSS

Exploits5References2Affected Software1

NVD•added 2017/12/28 2:29 a.m.•12 views

CVE-2014-8389

cgi-bin/mft/wirelessmft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026 with firmware 1.43 21.08.2014, AirLive MD-3025 with firmware 1.81 21.08.2014, AirLive WL-2000CAM with firmware LM.1.6.18 14.10.2011, and AirLive POE-200CAM v2 with firmware LM.1.6.17.01 uses hard-code...

10CVSS9.3AI score0.14008EPSS

Exploits5References5

ATTACKERKB•added 2017/12/28 2:29 a.m.•1 views

CVE-2014-8389

10CVSS5.6AI score0.14008EPSS

Exploits5References6

Prion•added 2017/12/28 2:29 a.m.•20 views

Hardcoded credentials

10CVSS7.1AI score0.14008EPSS

Exploits5References5Affected Software5

Cvelist•added 2017/12/27 6:0 p.m.•12 views

CVE-2014-8389

9.4AI score0.14008EPSS

Exploits5References5

CVE•added 2017/12/27 6:0 p.m.•52 views

CVE-2014-8389

CVE-2014-8389 affects AirLive IP cameras (MD-3025, BU-3026, BU-2015, WL-2000CAM, POE-200CAM). The vulnerability is an OS command injection in the CGI binaries: cgi_test.cgi on the MD-3025/BU-3026/BU-2015 (injection via certain parameters such as write_tan, etc.), and wireless_mft.cgi on WL-2000CA...

10CVSS9.2AI score0.14008EPSS

Exploits5References5Affected Software1

Prion•added 2017/07/25 1:29 a.m.•13 views

Design/Logic Flaw

cgitest.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025 with firmware 1.81 allows remote attackers to execute arbitrary OS commands via shell metacharacters after an "&" ampersand in the writemac writepid, writemsn, writetan, or writehdv parameter...

10CVSS8.2AI score0.42161EPSS

Exploits5References6Affected Software3

NVD•added 2017/07/25 1:29 a.m.•13 views

CVE-2015-2279

10CVSS9.8AI score0.42161EPSS

Exploits5References6

CVE•added 2017/07/24 3:0 p.m.•56 views

CVE-2015-2279

CVE-2015-2279 is an OS command injection in AirLive cgi_test.cgi on MD-3025, BU-3026 and BU-2015 cameras (firmware listed in advisories). The vulnerability arises when handling certain parameters (write_mac, write_pid, write_msn, write_tan, write_hdv); after an ampersand, the attacker can influen...

10CVSS9.7AI score0.42161EPSS

Exploits5References6Affected Software1