17 matches found
EUVD-2019-18935
Malware in sbrugna...
EUVD-2017-8041
Malware in sbrugna...
EUVD-2024-47988
Malicious code in bioql PyPI...
EUVD-2024-47991
Malicious code in bioql PyPI...
EUVD-2024-47990
Malicious code in bioql PyPI...
Linux-Based Lenovo Webcams' Flaw Can Be Remotely Exploited for BadUSB Attacks
Cybersecurity researchers have disclosed vulnerabilities in select model webcams from Lenovo that could turn them into BadUSB attack devices. "This allows remote attackers to inject keystrokes covertly and launch attacks independent of the host operating system," Eclypsium researchers Paul...
WordPress web-cam cross-site scripting vulnerability
WordPress web-cam is a plugin for integrating instant photo taking feature in WordPress website, by calling user's device camera to realize real-time photo taking feature. WordPress web-cam suffers from a cross-site scripting vulnerability that stems from insufficient input cleanup and escaping,...
Amazon Cloud Cam 安全漏洞
Amazon Cloud Cam is an HD webcam from Amazon. A security vulnerability exists in Amazon Cloud Cam that stems from the device's default pairing state allowing bypassing SSL fixes, which could lead to network traffic interception and modification...
CVE-2025-2348
A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been classified as problematic. Affected is an unknown function of the file /mnt/extsd/event/ of the component HTTP/RTSP. The manipulation leads to information disclosure. The attack needs to be initiated within the local...
CVE-2025-2343 IROAD Dash Cam X5/Dash Cam X6 Device Pairing hard-coded credentials
A vulnerability classified as critical was found in IROAD Dash Cam X5 and Dash Cam X6 up to 20250308. Affected by this vulnerability is an unknown functionality of the component Device Pairing. The manipulation leads to hard-coded credentials. Access to the local network is required for this atta...
CVE-2025-2341
A vulnerability was found in IROAD Dash Cam X5 up to 20250203. It has been rated as problematic. This issue affects some unknown processing of the component SSID. The manipulation leads to use of default credentials. The attack needs to be initiated within the local network. The complexity of an...
CVE-2025-2341
CVE-2025-2341 affects IROAD Dash Cam X5 (up to 20250203). The issue involves processing of a component SSID that can be manipulated to use default credentials. Exploitation requires local-network access with high attack complexity; the exploit has been disclosed publicly. Multiple sources (NVD, R...
CVE-2020-13517
An information disclosure vulnerability exists in the WinRing0x64 Driver IRP 0x9c406104 functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet IRP can cause the disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerability...
NZXT CAM Information Disclosure Vulnerability (CNVD-2020-73176)
NZXT CAM is an all-in-one software solution for computer hardware monitoring and management. An information disclosure vulnerability exists in the IRP 0x9c406144 function of the WinRing0x64 driver for NZXT CAM 4.8.0. An attacker can exploit this vulnerability by sending a specially crafted I/O...
PT-2020-13594 · Nzxt · Nzxt Cam
Name of the Vulnerable Software and Affected Versions: NZXT CAM version 4.8.0 Description: An information disclosure issue exists in the WinRing0x64 Driver IRP 0x9c406104 functionality. A specially crafted I/O request packet IRP can cause the disclosure of sensitive information. An attacker can...
NZXT CAM Information Disclosure Vulnerability
NZXT CAM is a performance monitoring software for gaming computers from NZXT USA. The software can be used to manage computer performance, temperature, and devices to ensure that the computer is at optimal performance. An information disclosure vulnerability exists in NZXT CAM version 4.8.0, whic...
NZXT CAM 权限许可和访问控制问题漏洞
NZXT CAM is a performance monitoring software for gaming computers from NZXT. A vulnerability exists in the NZXT CAM WinRing0x64 Driver Privilege I/O Write IRPs feature, which can be exploited by a remote attacker to elevate privileges by submitting a special I/O request...