CVE-2026-5386 KMW CCTV Security Cameras Unverified Password Change

The affected KMW CCTV Security Cameras are vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administrator password to a known value without authentication, granting full access to the camera feeds and settings...

KMW CCTV Security Cameras

ADVISORY SUMMARY Successful exploitation of this vulnerability may grant full unauthorized access to camera feeds and settings. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure for all...

EUVD-2026-31124

An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about the camera such as open services and camera account credentials...

PT-2026-20283

Name of the Vulnerable Software and Affected Versions Honeywell CCTV products versions prior to firmware updates addressing CVE-2026-1670 Honeywell I-HIB2PI-UL 2MP IP 6.1.22.1216 Honeywell SMB NDAA MVO-3, PTZ WDR 2MP 32M, 25M IPC WDR 2MP 32M PTZ v2.0 Description The affected products are vulnerab...

CVE-2021-47709 COMMAX Smart Home Ruvie CCTV Bridge DVR Service Config Write / DoS

COMMAX Smart Home System allows an unauthenticated attacker to change configuration and cause denial-of-service through the setconf endpoint. Attackers can trigger a denial-of-service scenario by sending a malformed request to the setconf endpoint...

CVE-2021-47709

CVE-2021-47709 (COMMAX Smart Home System) : An unauthenticated attacker can change configuration and trigger denial-of-service by sending a malformed request to the setconf endpoint. The impact is a network-accessible DoS with high severity (CVSS 4.0 base 8.7, AV:N/AC:L/PR:N/UI:N/VI:N/VC:N/VA:H/S...

CISA Releases Three Industrial Control Systems Advisories

CISA released three Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-343-01 Universal Boot Loader U-Boot ICSA-25-343-02 Festo LX Appliance ICSA-25-343-03 Multiple India-Base...

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

Threat actors with ties to Iran engaged in cyber warfare as part of efforts to facilitate and enhance physical, real-world attacks, a trend that Amazon has called cyber-enabled kinetic targeting. The development is a sign that the lines between state-sponsored cyber attacks and kinetic warfare ar...

ICAM365 CCTV Camera Multiple Models

RISK EVALUATION Successful exploitation of these vulnerabilities could result in unauthorized exposure of camera video streams and camera configuration data. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such...

Exploit for Signal Handler Race Condition in Sonicwall Sma_6200_Firmware

CCTV-Hacking-Simulated-Environment-Only Repository purpose:...

EUVD-2017-14471

Malware in sbrugna...

EUVD-2019-11507

Malware in sbrugna...

EUVD-2019-11508

Malware in sbrugna...

EUVD-2023-12554

Malicious code in bioql PyPI...

EUVD-2025-25692

Malicious code in bioql PyPI...

EUVD-2022-51951

Malicious code in bioql PyPI...

EUVD-2023-29924

Malicious code in bioql PyPI...

EUVD-2023-29918

Malicious code in bioql PyPI...

CVE-2025-9381

CVE-2025-9381 affects FNKvision Y215 CCTV Camera (firmware 10.194.120.40). The vulnerability involves information disclosure via manipulation of an unknown part of the file /tmp/wpa_supplicant.conf on the device, with physical access required. The issue is described as high attack complexity, but...

FNKvision Y215 CCTV Camera 安全漏洞

FNKvision Y215 CCTV Camera is a camera from FNKvision Thailand. A security vulnerability exists in FNKvision Y215 CCTV Camera version 10.194.120.40, which stems from the use of weak hashing and may require local environment access...