Lucene search
K

27 matches found

nvd
nvd
added 2024/04/04 6:15 p.m.27 views

CVE-2024-29192

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to Cross-Site Request Forgery. The /api/config endpoint allows one to modify the existing configuration with user-supplied values. While the API is only allowing localhost to interact without authentication, an...

8.8CVSS9AI score0.00471EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2024/04/04 12:0 a.m.6 views

PT-2024-22796

Name of the Vulnerable Software and Affected Versions: gotortc versions 1.8.5 and prior Description: The issue concerns a camera streaming application. It allows modification of the existing configuration with user-supplied values through the /api/config endpoint. Although this API only allows...

8.8CVSS8.7AI score0.00471EPSS
Exploits1References10
susecve
susecve
added 2023/02/15 4:38 a.m.4 views

SUSE CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

5.3CVSS7.6AI score0.00828EPSS
Exploits0References3
osv
osv
added 2018/01/23 3:29 p.m.4 views

UBUNTU-CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

5.3CVSS6.6AI score0.00828EPSS
Exploits0References4
osv
osv
added 2018/01/23 3:29 p.m.1 views

DEBIAN-CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

5.3CVSS6.8AI score0.00828EPSS
Exploits0References1
debiancve
debiancve
added 2018/01/23 3:0 p.m.47 views

CVE-2017-15093

When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to configure forward zones. I...

5.3CVSS5.9AI score0.00828EPSS
Exploits0
cvelist
cvelist
added 2017/11/07 4:0 p.m.26 views

CVE-2017-2916

An exploitable vulnerability exists in the /api/CONFIG/restore functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause an arbitrary file to be overwritten. An attacker can send an HTTP request to trigger this vulnerability...

9.9CVSS8.7AI score0.02251EPSS
Exploits2References1
Rows per page
Query Builder