Lucene search
K

5 matches found

NVD
NVD
added 2026/01/08 12:15 a.m.3 views

CVE-2017-20213

FLIR Thermal Camera F/FC/PT/D Stream firmware version 8.0.0.64 contains an unauthenticated vulnerability that allows remote attackers to access live camera streams without credentials. Attackers can exploit the vulnerability to view unauthorized thermal camera video feeds across multiple camera...

8.7CVSS0.00422EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.4 views

PT-2025-53360

FLIR thermal traffic cameras contain an unauthenticated device manipulation vulnerability in their WebSocket implementation that allows attackers to bypass authentication and authorization controls. Attackers can directly modify device configurations, access system information, and potentially...

9.3CVSS7AI score0.00283EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.7 views

PT-2025-53361

FLIR thermal traffic cameras contain an unauthenticated vulnerability that allows remote attackers to access live video streams without credentials. Attackers can directly retrieve video streams by accessing specific endpoints like /live.mjpeg, /snapshot.jpg, and RTSP streaming URLs without...

8.7CVSS7.1AI score0.00409EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/07/14 12:0 a.m.5 views

Teledyne FLIR FB-Series O和Teledyne FLIR FH-Series ID 注入漏洞

The Teledyne FLIR FB-Series O and Teledyne FLIR FH-Series ID are both a series of thermal imaging cameras from Teledyne FLIR USA. An injection vulnerability exists in Teledyne FLIR FB-Series O and Teledyne FLIR FH-Series ID version 1.3.2.16, which stems from command injection due to misbehavior o...

5CVSS5.8AI score0.01997EPSS
Exploits0References6
Rapid7 Blog
Rapid7 Blog
added 2022/11/04 7:14 p.m.56 views

Metasploit Weekly Wrap-Up

C is for cookie And that’s good enough for Apache CouchDB, apparently. Our very own Jack Heysel added an exploit module based on CVE-2022-24706 targeting CouchDB prior to 3.2.2, leveraging a special default ‘monster’ cookie that allows users to run OS commands. This fake computer I just made says...

10CVSS8.2AI score0.99618EPSS
Exploits36
Rows per page
Query Builder