CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7624 matches found

CVE•added 2007/10/04 11:0 p.m.•49 views

CVE-2007-5213

The CVE-2007-5213 entry describes CSRF vulnerabilities in the AXIS 2100 Network Camera 2.02 with firmware 2.43 and earlier. The affected component is the web management interface, where cross-site requests can perform administrator actions. Demonstrated vectors include (1) changing the SMTP serve...

9.3CVSS7.1AI score0.01687EPSS

Exploits1References6Affected Software2

CVE•added 2007/10/04 11:0 p.m.•52 views

CVE-2007-5212

CVE-2007-5212: AXIS 2100 Network Camera 2.02 has multiple XSS vulnerabilities in firmware prior to 2.43. Attackers can inject arbitrary web script/HTML via (1) parameters tied to saved settings (e.g., conf_SMTP_MailServer1 in ServerManager.srv) and (2) the subpage parameter to wizard/first/wizard...

4.3CVSS5.8AI score0.01939EPSS

Exploits1References6Affected Software2

securityvulns•added 2007/10/01 12:0 a.m.•34 views

Axis IP cameras crossite scripting

It's possible to spoof video content by using crossite scripting attacks...

1.9AI score

Exploits0References1

NVD•added 2007/09/18 6:17 p.m.•18 views

CVE-2007-4929

Multiple cross-site scripting XSS vulnerabilities in the AXIS 207W camera allow remote attackers to inject arbitrary web script or HTML via the camNo parameter to incl/imageincl.shtml, and other unspecified vectors...

4.3CVSS5.8AI score0.01985EPSS

Exploits1References7

Prion•added 2007/09/18 6:17 p.m.•11 views

Cross site scripting

4.3CVSS6.1AI score0.01985EPSS

Exploits1References7

Prion•added 2007/09/18 6:17 p.m.•18 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the AXIS 207W camera allow remote attackers to perform certain actions as administrators via 1 axis-cgi/admin/restart.cgi, 2 the user and sgrp parameters to axis-cgi/admin/pwdgrp.cgi in an add action, or 3 the server parameter to...

4.3CVSS7.6AI score0.02184EPSS

Exploits1References7

Cvelist•added 2007/09/18 6:0 p.m.•17 views

CVE-2007-4926

The AXIS 207W camera uses a base64-encoded cleartext username and password for authentication, which allows remote attackers to obtain sensitive information by sniffing the wireless network or by leveraging unspecified other vectors...

6.5AI score0.03067EPSS

Exploits0References5

Cvelist•added 2007/09/18 6:0 p.m.•18 views

CVE-2007-4928

The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information...

6.1AI score0.00349EPSS

Exploits0References4

Cvelist•added 2007/09/18 6:0 p.m.•23 views

CVE-2007-4930

7AI score0.02184EPSS

Exploits1References7

CVE•added 2007/09/18 6:0 p.m.•50 views

CVE-2007-4928

The CVE-2007-4928 case concerns the AXIS 207W camera, where the WEP/WPA key is stored in cleartext in the device’s configuration file. This cleartext storage enables a local user to obtain sensitive credentials. The issue is documented with impact on confidentiality (local access to keys) and a l...

4.9CVSS6.1AI score0.00349EPSS

Exploits0References4Affected Software1

CVE•added 2007/09/18 6:0 p.m.•46 views

CVE-2007-4930

The CVE-2007-4930 entry covers multiple CSRF vulnerabilities in the AXIS 207W camera. The affected product is the AXIS 207W network camera. The issues allow remote attackers to perform administrator actions via specific endpoints: (1) axis-cgi/admin/restart.cgi, (2) axis-cgi/admin/pwdgrp.cgi with...

4.3CVSS7.1AI score0.02184EPSS

Exploits1References7Affected Software1

CVE•added 2007/09/18 6:0 p.m.•51 views

CVE-2007-4929

CVE-2007-4929 concerns the AXIS 207W network camera, where multiple cross-site scripting (XSS) vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The primary vector cited is the camNo parameter to incl/image_incl.shtml, with other unspecified vectors also mentioned. Th...

4.3CVSS5.8AI score0.01985EPSS

Exploits1References7Affected Software1

Cvelist•added 2007/09/18 6:0 p.m.•24 views

CVE-2007-4927

axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a denial of service reboot via many requests with unique buffer names in the buffername parameter in a start action...

6.3AI score0.01762EPSS

Exploits1References7

CVE•added 2007/09/18 6:0 p.m.•41 views

CVE-2007-4926

The CVE-2007-4926 entry concerns the AXIS 207W camera. The affected component is the authentication mechanism that uses a base64-encoded cleartext username and password, enabling an attacker to obtain credentials by eavesdropping on wireless traffic or via other unspecified vectors. Practical imp...

9.3CVSS6.5AI score0.03067EPSS

Exploits0References5Affected Software1

Packet Storm•added 2007/09/18 12:0 a.m.•37 views

07080701_axis.txt

http://airscanner.com/security/07080701axis.htm Airscanner Mobile Security Advisory 07080101: Axis 207W Multiple Vulnerabilities Product: AXIS 207W Platform: NA Requirements: AXIS 207W Camera on WLAN/LAN Credits: Seth Fogie Airscanner Mobile Security http://www.airscanner.com May 30, 2007 Risk...

7.4AI score

Exploits0

securityvulns•added 2007/09/17 12:0 a.m.•46 views

Axis 207W Wireless Camera Web Interface - Multiple Vulnerabilities

0.1AI score

Exploits0

securityvulns•added 2007/09/17 12:0 a.m.•25 views

AXIS 207W web camera multiple security vulnerabilities

Crossite scripting, request forgery...

1.9AI score

Exploits0References1

exploitpack•added 2007/09/14 12:0 a.m.•14 views

Axis Communications 207W Network Camera - Web Interface axis-cgiadminpwdgrp.cgi Multiple Cross-Site Request Forgery Vulnerabilities

Axis Communications 207W Network Camera - Web Interface axis-cgiadminpwdgrp.cgi Multiple Cross-Site Request Forgery Vulnerabilities source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues...

0.3AI score

Exploits0

exploitpack•added 2007/09/14 12:0 a.m.•12 views

Axis Communications 207W Network Camera - Web Interface axis-cgiadminrestart.cgi Cross-Site Request Forgery

Axis Communications 207W Network Camera - Web Interface axis-cgiadminrestart.cgi Cross-Site Request Forgery source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a...

0.5AI score

Exploits0

exploitpack•added 2007/09/14 12:0 a.m.•13 views

Axis Communications 207W Network Camera - Web Interface adminrestartMessage.shtml?server Cross-Site Request Forgery

Axis Communications 207W Network Camera - Web Interface adminrestartMessage.shtml?server Cross-Site Request Forgery source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a...

0.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by