CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Prion•added 2023/02/25 2:15 a.m.•11 views

Command injection

ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. Versions prior to 1.36.33 and 1.37.33 contain an OS Command Injection via daemonControl in /web/api/app/Controller/HostController.php. Any authenticated user can...

6.5CVSS8.9AI score0.05839EPSS

Exploits0References1Affected Software1

CVE•added 2023/02/25 1:31 a.m.•63 views

CVE-2023-26039

ZoneMinder (CVE-2023-26039) is affected in versions prior to 1.36.33 and 1.37.33. The vulnerability is an OS Command Injection via daemonControl() in /web/api/app/Controller/HostController.php, allowing any authenticated user to run arbitrary shell commands as the web user. This is addressed by p...

8.8CVSS8AI score0.05839EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/02/25 1:31 a.m.•11 views

CVE-2023-26039 ZoneMinder vulnerable to OS Command injection in daemonControl() API

7.1CVSS9.1AI score0.05839EPSS

Exploits0References1

Debian CVE•added 2023/02/25 1:31 a.m.•41 views

CVE-2023-26039

8.8CVSS8.8AI score0.05839EPSS

Exploits0

CNVD•added 2019/02/19 12:0 a.m.•1 views

ZoneMinder Command Injection Vulnerability

ZoneMinder is a free and open source CCTV software application for Linux environments that supports IP, USB and analog cameras. A command injection vulnerability exists in ZoneMinder prior to version 1.32.3 in the daemonControl in includes/functions.php, which can be exploited by an attacker via...

9.8CVSS7.6AI score0.03002EPSS

Exploits1References1

UbuntuCve•added 2019/02/18 12:29 a.m.•14 views

CVE-2019-8427

daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters...

9.8CVSS7.2AI score0.03002EPSS

Exploits1References3

OSV•added 2019/02/18 12:29 a.m.•0 views

UBUNTU-CVE-2019-8427

daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters...

9.8CVSS7.3AI score0.03002EPSS

Exploits1References4

NVD•added 2019/02/18 12:29 a.m.•16 views

CVE-2019-8427

daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters...

9.8CVSS9.8AI score0.03002EPSS

Exploits1References1

Debian CVE•added 2019/02/18 12:0 a.m.•18 views

CVE-2019-8427

daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters...

9.8CVSS5.8AI score0.03002EPSS

Exploits1

CVE•added 2019/02/18 12:0 a.m.•50 views

CVE-2019-8427

ZoneMinder contains a command-injection flaw in daemonControl (includes/functions.php) exploitable via shell metacharacters. Affected versions are prior to 1.32.3. The CVE entry (CVE-2019-8427) is supported by multiple sources indicating the vulnerability resides in ZoneMinder before 1.32.3, enab...

9.8CVSS7.7AI score0.03002EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/02/18 12:0 a.m.•15 views

CVE-2019-8427

daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters...

7.8AI score0.03002EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by