Lucene search
K

23 matches found

Vulnrichment
Vulnrichment
added 2026/05/29 4:25 p.m.13 views

CVE-2026-5386 KMW CCTV Security Cameras Unverified Password Change

The affected KMW CCTV Security Cameras are vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administrator password to a known value without authentication, granting full access to the camera feeds and settings...

9.1CVSS5.8AI score0.00624EPSS
Exploits0References3
ICS
ICS
added 2026/05/28 6:0 a.m.18 views

KMW CCTV Security Cameras

ADVISORY SUMMARY Successful exploitation of this vulnerability may grant full unauthorized access to camera feeds and settings. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure for all...

9.1CVSS5.8AI score0.00624EPSS
Exploits0References13
EUVD
EUVD
added 2026/05/20 2:53 p.m.10 views

EUVD-2026-31124

An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about the camera such as open services and camera account credentials...

9.1CVSS5.8AI score0.00507EPSS
Exploits0References3
CISA
CISA
added 2025/12/09 12:0 p.m.10 views

CISA Releases Three Industrial Control Systems Advisories

CISA released three Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-343-01 Universal Boot Loader U-Boot ICSA-25-343-02 Festo LX Appliance ICSA-25-343-03 Multiple India-Base...

6.6AI score
Exploits0References3
ICS
ICS
added 2025/11/20 6:0 a.m.13 views

ICAM365 CCTV Camera Multiple Models

RISK EVALUATION Successful exploitation of these vulnerabilities could result in unauthorized exposure of camera video streams and camera configuration data. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such...

7CVSS6.7AI score0.00167EPSS
Exploits0References11
Pen Test Partners Blog
Pen Test Partners Blog
added 2024/09/10 5:15 a.m.13 views

Smart home security advice. Ring, SimpliSafe, Swann, and Yale

Introduction This guide covers the security of smart home security products from Ring, Yale, Swann, and SimpliSafe. Whether you're looking to monitor your property remotely, enhance your home's security, or see who’s at the front door, this guide will provide you with valuable insights. We have...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/01/10 1:0 p.m.18 views

Polite WiFi loophole could allow attackers to drain device batteries

Researchers at the University of Waterloo in Ontario have further researched a loophole in the WiFi protocol that was dubbed "polite WiFi". Last year the researchers published a study in which they showed someone could use this loophole to triangulate the location of any WiFi enabled device. Now,...

1.4AI score
Exploits0
HackRead
HackRead
added 2022/09/22 8:56 p.m.17 views

OpIran – Anonymous Hits Iranian State Sites, Hacks Over 300 CCTV Cameras

By Waqas Here's everything you want to know about Anonymous and its cyber attacks against the Iranian government for OpIran. This is a post from HackRead.com Read the original post: OpIran - Anonymous Hits Iranian State Sites, Hacks Over 300 CCTV Cameras...

2.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/11/29 2:49 p.m.17 views

Hackers all over the world are targeting Tasmania’s emergency services

Emergency services—under which the police, fire, and emergency medical services departments fall—is an infrastructure vital to any country or state. But when those services come under threat from either physical or cyber entities, it’s as good as putting the lives of citizens at risk as well...

1.9AI score
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/09/16 7:20 a.m.43 views

Real-life social engineering. Two days in tweets

This is the write-up of my live tweets while on a recent social engineering engagement. It’s all available on my feed @ghostie I did this because I wanted to share what it's like to prep for, and work through a job, warts and all. If you can take anything away, to enhance your technique, or defen...

7.3AI score
Exploits0
NVD
NVD
added 2019/03/21 4:1 p.m.49 views

CVE-2019-6973

Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server based on gSOAP 2.8.x is configured for an iterative queueing approach aka non-threaded operation with a timeout of several seconds...

7.5CVSS7.5AI score0.13776EPSS
Exploits5References3
Cvelist
Cvelist
added 2019/03/17 6:12 p.m.49 views

CVE-2019-6973

Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server based on gSOAP 2.8.x is configured for an iterative queueing approach aka non-threaded operation with a timeout of several seconds...

7.5AI score0.13776EPSS
Exploits5References3
ThreatPost
ThreatPost
added 2018/09/17 9:13 p.m.30 views

Zero-Day Bug Allows Hackers to Access CCTV Surveillance Cameras

Between 180,000 and 800,000 IP-based closed-circuit television cameras are vulnerable to a zero-day vulnerability that allows hackers to access surveillance cameras, spy on and manipulate video feeds or plant malware. According to a Tenable Research Advisory issued Monday, the bugs are rated...

10CVSS0.9AI score0.15226EPSS
Exploits2References6
HackRead
HackRead
added 2018/03/10 4:16 p.m.108 views

Israeli Rabbi arrested for hacking CCTV cameras at women’ bathing suit shop

By Carolina Israeli police have arrested a 41-year-old man for allegedly hacking This is a post from HackRead.com Read the original post: Israeli Rabbi arrested for hacking CCTV cameras at women’ bathing suit shop...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2017/11/01 12:0 a.m.876 views

JAWS/1.0 RCE Vulnerability

The JAWS/1.0 web server is prone to a remote command execution RCE vulnerability. This VT has been deprecated as the flaw is already covered by the VT SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respecti...

7.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2017/11/01 12:0 a.m.70 views

Digital Video Recorder Web Authentication Bypass (JAWS/1.0)

The web-based authentication of the connected digital video recorder - running on a JAWS/1.0 server - is prone to an authentication bypass vulnerability. This VT has been deprecated as the flaw is already covered by the VT SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2017/10/12 9:27 p.m.24 views

Cameradar v2.0 - Hack into RTSP CCTV cameras

An RTSP stream access tool that comes with its library. Cameradar allows you to Detect open RTSP hosts on any accessible target host Detect which device model is streaming Launch automated dictionary attacks to get their stream route e.g.: /live.sdp Launch automated dictionary attacks to get the...

7.2AI score
Exploits0References4
The Hacker News
The Hacker News
added 2017/09/20 6:8 a.m.16 views

Hacker Can Steal Data from Air-Gapped Computers Using IR CCTV Cameras

Air-gapped computers that are isolated from the Internet and physically separated from local networks are believed to be the most secure computers which are difficult to infiltrate. However, these networks have been a regular target in recent years for researchers, who have been trying to...

6.4AI score
Exploits0
ThreatPost
ThreatPost
added 2017/03/30 2:50 p.m.60 views

New Mirai Variant Roars into Action With 54 Hour DDoS Attacks

A variant of the Mirai malware pummeled a U.S. college last month with a marathon 54-hour long attack. Researchers say this latest Mirai variant is a more potent version of the notorious Mirai malware that made headlines in October, targeting DNS provider Dyn and the Krebs on Security website. Th...

10CVSS0.7AI score0.89294EPSS
Exploits62References3
ThreatPost
ThreatPost
added 2016/11/21 12:10 p.m.21 views

Credentials Accessible in Siemens-Branded CCTV Cameras

Vanderbilt Industries has provided a firmware update for more than a dozen Siemens-branded IP-based closed circuit TV cameras that patches a serious, remotely exploitable vulnerability. The flaw, CVE-2016-9155, could allow an attacker to gain admin credentials by sending certain crafted requests,...

5CVSS2.9AI score0.02331EPSS
Exploits0References5
Rows per page
Query Builder