CVE-2020-36874 ACE SECURITY WIP-90113 Unauthenticated Configuration Disclosure

ACE SECURITY WIP-90113 HD cameras contain an unauthenticated configuration disclosure vulnerability in the /web/cgi-bin/hi3510/backup.cgi endpoint. The endpoint permits remote download of a compressed configuration backup without requiring authentication or authorization. The exposed backup may...

EUVD-2018-19541

Malware in sbrugna...

EUVD-2012-3857

Malware in sbrugna...

EUVD-2019-2672

Malware in sbrugna...

CVE-2025-34052

Rejected reason: An unauthenticated endpoint that exposes firmware version, MAC address, and supported codecs is not indicative of a security boundary being crossed, as this metadata is not inherently sensitive and commonly used for legitimate fingerprinting and discovery...

CVE-2023-34873

On MOBOTIX P3 cameras before MX-V4.7.2.18 and Mx6 cameras before MX-V5.2.0.61, the tcpdump feature does not properly validate input, which allows authenticated users to execute code...

PT-2025-22840 · Sony · Sony Snc-Ds10 +6

Name of the Vulnerable Software and Affected Versions: Sony SNC-M1, SNC-M3, SNC-RZ25N, SNC-RZ30N, SNC-DS10, SNC-CS3N and SNC-RX570N versions up to 1.30 Description: A critical vulnerability has been found in the Administrative Interface of the affected Sony cameras, allowing for the use of defaul...

CVE-2023-34873

On MOBOTIX P3 cameras before MX-V4.7.2.18 and Mx6 cameras before MX-V5.2.0.61, the tcpdump feature does not properly validate input, which allows authenticated users to execute code...

CVE-2024-13130

A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S up to 20241222. It has been rated as problematic. Affected by this issue is some unknown functionality of the file ../mtd/Config/Sha1Account1 of the component Web Interface. The manipulation leads to...

CVE-2020-25749

The Telnet service of Rubetek cameras RV-3406, RV-3409, and RV-3411 cameras firmware versions v342, v339 could allow an remote attacker to take full control of the device with a high-privileged account. The vulnerability exists because a system account has a default and static password. The Telne...

CVE-2012-3913

The Cisco VC220 and VC240 cameras allow remote attackers to cause a denial of service WebUI outage via crafted packets, aka Bug IDs CSCtf73188, CSCtf88059, CSCtf87951, CSCtf87908, and CSCtf88019...

CVE-2019-14708

An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. A buffer overflow in the action parameter leads to remote code execution in the context of the nobody account...

CVE-2024-13894

Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in versions up to 3.3.0, are vulnerable to path traversal. When an affected device is connected to a mobile app, it opens a port 10000 enabling a user to download pictures shot at specific moments by...

CVE-2024-13893

Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in versions up to 3.3.0, might share same credentials for telnet service. Hash of the password can be retrieved through physical access to SPI connected memory. For the telnet service to be enabled, the...

CVE-2024-13892

Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in versions up to 3.3.0, are vulnerable to command injection. During the initialization process, a user has to use a mobile app to provide devices with Access Point credentials. This input is not properly...

CVE-2024-13893 Shared credentials in Smartwares cameras

Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in versions up to 3.3.0, might share same credentials for telnet service. Hash of the password can be retrieved through physical access to SPI connected memory. For the telnet service to be enabled, the...

The vulnerability of the Message Handler component in the DS-7604NXI-K1/4P microprogramming system for IP cameras allows a intruder to disclose protected information or cause a malfunction in the service.

The vulnerability of the Message Handler component in the DS-7604NXI-K1/4P microprogramming system for IP cameras involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose protected information or cause malfunctions in the...

VulnCheck KEV: CVE-2021-3577

An unauthenticated remote code execution vulnerability was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker on the same network unauthorized access to the device...

Session fixation

Digital Watchdog DW MEGApix IP cameras A7.2.220211029 allows attackers to access the core log file and perform session hijacking via a crafted session token...

Bosch IP cameras 安全漏洞

Bosch IP cameras is a German Bosch network camera A security vulnerability exists in Bosch IP cameras, which stems from specially crafted TCP/IP packets that cause the camera's recovery image telnet interface to crash, and also results in a buffer overflow that enables remote code execution...