Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2016-7456

Malware in sbrugna...

10CVSS9.4AI score0.02305EPSS
Exploits2References4
Packet Storm
Packet Storm
added 2016/09/27 12:0 a.m.45 views

AVer Information EH6108H+ Authentication Bypass / Inforation Exposure

Vulnerability Note VU667480 AVer Information EH6108H+ hybrid DVR contains multiple vulnerabilities https://www.kb.cert.org/vuls/id/667480 Overview: AVer Information EH6108H+ hybrid DVR, version X9.03.24.00.07l and possibly earlier, reportedly contains multiple vulnerabilities, including...

10CVSS0.0258EPSS
Exploits2
NVD
NVD
added 2016/09/19 1:59 a.m.23 views

CVE-2016-6537

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings...

7.5CVSS7.3AI score0.01258EPSS
Exploits2References2
OSV
OSV
added 2016/09/19 1:59 a.m.5 views

CVE-2016-6537

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings...

7.5CVSS5.8AI score0.01258EPSS
Exploits2References2
OSV
OSV
added 2016/09/19 1:59 a.m.6 views

CVE-2016-6536

The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...

9.8CVSS5.8AI score0.0258EPSS
Exploits2References2
NVD
NVD
added 2016/09/19 1:59 a.m.19 views

CVE-2016-6536

The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...

10CVSS9.5AI score0.0258EPSS
Exploits2References2
NVD
NVD
added 2016/09/19 1:59 a.m.23 views

CVE-2016-6535

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l have hardcoded accounts, which allows remote attackers to obtain root access by leveraging knowledge of the credentials and establishing a TELNET session...

10CVSS9.4AI score0.02305EPSS
Exploits2References2
Prion
Prion
added 2016/09/19 1:59 a.m.21 views

Format string

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings...

5CVSS6.6AI score0.01258EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2016/09/19 1:59 a.m.21 views

Design/Logic Flaw

The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...

10CVSS7.5AI score0.0258EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2016/09/19 1:59 a.m.19 views

Hardcoded credentials

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l have hardcoded accounts, which allows remote attackers to obtain root access by leveraging knowledge of the credentials and establishing a TELNET session...

10CVSS7.4AI score0.02305EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2016/09/19 1:0 a.m.51 views

CVE-2016-6536

The CVE-2016-6536 issue affects AVer Information EH6108H+ hybrid DVRs (firmware X9.03.24.00.07l and possibly earlier). The vulnerability enables remote attackers to bypass page-access restrictions or modify passwords by guessing the handle parameter value on the web interface /setup page, potenti...

10CVSS9.4AI score0.0258EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2016/09/19 1:0 a.m.25 views

CVE-2016-6536

The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value...

9.6AI score0.0258EPSS
Exploits2References2
Cvelist
Cvelist
added 2016/09/19 1:0 a.m.26 views

CVE-2016-6535

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l have hardcoded accounts, which allows remote attackers to obtain root access by leveraging knowledge of the credentials and establishing a TELNET session...

9.5AI score0.02305EPSS
Exploits2References2
Cvelist
Cvelist
added 2016/09/19 1:0 a.m.26 views

CVE-2016-6537

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings...

7.5AI score0.01258EPSS
Exploits2References2
CVE
CVE
added 2016/09/19 1:0 a.m.53 views

CVE-2016-6537

The CVE-2016-6537 entry relates to AVer Information EH6108H+ devices (firmware X9.03.24.00.07l and possibly earlier) that store passwords in base64 and expose credentials in HTTP cookies, enabling information exposure. Connected sources corroborate multiple vulnerabilities in the EH6108H+ DVR: ha...

7.5CVSS7.7AI score0.01258EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2016/09/19 1:0 a.m.60 views

CVE-2016-6535

CVE-2016-6535 affects AVer Information EH6108H+ hybrid DVR (firmware X9.03.24.00.07l). The vulnerability arises from hard-coded accounts with root privileges, enabling remote attackers to obtain root access via a default TELNET service. CERT/CC notes multiple issues in the device, including authe...

10CVSS9.3AI score0.02305EPSS
Exploits2References2Affected Software1
CNVD
CNVD
added 2016/09/18 12:0 a.m.3 views

AVer Information EH6108H+ hybrid DVR Information Disclosure Vulnerability

The AVer Information EH6108H+ hybrid DVR VU is a hard disk recorder DVR product from Round Show AVer Information. An information disclosure vulnerability exists in the AVer Information EH6108H+ hybrid DVR. An attacker can exploit the vulnerability to obtain sensitive information...

7.5CVSS6.2AI score0.01258EPSS
Exploits2References1
CNVD
CNVD
added 2016/09/18 12:0 a.m.42 views

AVer Information EH6108H+ hybrid DVR VU Hardcoded Credentials Vulnerability Vulnerability

The AVer Information EH6108H+ hybrid DVR VU is a hard disk recorder DVR product from Round Show AVer Information. A hard-coded credentials vulnerability exists in the AVer Information EH6108H+ hybrid DVR VU. An attacker can exploit the vulnerability to gain root privileges...

10CVSS7.1AI score0.02305EPSS
Exploits2References1
CERT
CERT
added 2016/09/13 12:0 a.m.55 views

AVer Information EH6108H+ hybrid DVR contains multiple vulnerabilities

Overview AVer Information EH6108H+ hybrid DVR, version X9.03.24.00.07l and possibly earlier, reportedly contains multiple vulnerabilities, including undocumented privileged accounts, authentication bypass, and information exposure. Description AVer Information EH6108H+ hybrid DVR is an IP securit...

10CVSS9.1AI score0.0258EPSS
Exploits2References5
Rows per page
Query Builder