Lucene search
K

156 matches found

Vulnrichment
Vulnrichment
added 2026/03/20 9:16 a.m.5 views

CVE-2026-33124 Frigate has insecure password change functionality

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Versions prior to 0.17.0-beta1 allow any authenticated user to change their own password without verifying the current password through the /users/username/password endpoint. Changing a password does not...

8.6CVSS5.8AI score0.00247EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/20 9:16 a.m.26 views

CVE-2026-33124 Frigate has insecure password change functionality

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Versions prior to 0.17.0-beta1 allow any authenticated user to change their own password without verifying the current password through the /users/username/password endpoint. Changing a password does not...

8.6CVSS0.00247EPSS
Exploits0References2
OSV
OSV
added 2026/03/20 9:16 a.m.7 views

CVE-2026-33124 Frigate has insecure password change functionality

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Versions prior to 0.17.0-beta1 allow any authenticated user to change their own password without verifying the current password through the /users/username/password endpoint. Changing a password does not...

8.6CVSS5.8AI score0.00247EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.7 views

Frigate 代码问题漏洞

Frigate is a complete native NVR developed by Blake Blackshear, designed specifically for home assistants with AI object detection capabilities. Versions of Frigate prior to 0.16.3 have code vulnerabilities; these vulnerabilities stem from the /ffprobe endpoint accepting arbitrary user-controlled...

5CVSS6AI score0.00189EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.10 views

Frigate 授权问题漏洞

Frigate is a complete native NVR developed by Blake Blackshear, designed specifically for home assistants with AI object detection capabilities. Versions of Frigate prior to 0.16.2 have a licensing issue vulnerability. This vulnerability stems from the ability of the viewer role user to delete...

8.1CVSS5.8AI score0.00243EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.10 views

Frigate 授权问题漏洞

Frigate is a complete native NVR developed by Blake Blackshear, designed specifically for home assistants with AI object detection capabilities. Versions of Frigate prior to 0.17.0-beta1 contained an authorization vulnerability. This vulnerability stemmed from the fact that changing passwords did...

8.8CVSS5.8AI score0.00247EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/03/07 8:23 p.m.182 views

Exploit for OS Command Injection in Frigate

⚠️ CVE-2026-25643 - Detect and Analyze Remote Code Execution...

9.1CVSS6.5AI score0.02874EPSS
Exploits8
Packet Storm
Packet Storm
added 2026/02/27 12:0 a.m.272 views

📄 Frigate NVR 0.16.3 Remote Code Execution

This Metasploit module exploits a remote code execution vulnerability in Frigate NVR versions 0.16.3 and below by manipulating the application's configuration through the go2rtc stream settings. The module retrieves the current configuration, safely parses and modifies it to introduce a controlle...

9.1CVSS6.6AI score0.02874EPSS
Exploits8
Packet Storm
Packet Storm
added 2026/02/25 12:0 a.m.299 views

📄 Frigate NVR 0.16.3 Remote Command Execution

This Python exploit targets a critical configuration manipulation vulnerability in Frigate NVR versions up to 0.16.3 both authenticated and unauthenticated paths. By injecting a malicious go2rtc stream and a fake camera entry, it triggers arbitrary command execution as the Frigate process during...

9.1CVSS5.9AI score0.02874EPSS
Exploits8
GithubExploit
GithubExploit
added 2026/02/24 9:14 p.m.262 views

Exploit for Improper Privilege Management in Frigate

Frigate NVR ≤ 0.16.3 Blind RCE Exploit CVE-2026-25643 PoC...

9.1CVSS6AI score0.02874EPSS
Exploits8
NVD
NVD
added 2026/02/06 8:16 p.m.9 views

CVE-2026-25643

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...

9.1CVSS0.02874EPSS
Exploits8References2
ATTACKERKB
ATTACKERKB
added 2026/02/06 7:16 p.m.4 views

CVE-2026-25643

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...

9.1CVSS5.6AI score0.02874EPSS
Exploits8References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/06 7:16 p.m.2 views

CVE-2026-25643 Frigate Affected by Authenticated Remote Command Execution (RCE) and Container Escape

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...

9.1CVSS5.6AI score0.02874EPSS
Exploits8References2
Cvelist
Cvelist
added 2026/02/06 7:16 p.m.28 views

CVE-2026-25643 Frigate Affected by Authenticated Remote Command Execution (RCE) and Container Escape

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...

9.1CVSS0.02874EPSS
Exploits8References2
CVE
CVE
added 2026/02/06 7:16 p.m.44 views

CVE-2026-25643

Frigate (NVR) prior to version 0.16.4 is affected by a critical Remote Command Execution (RCE) vulnerability in the go2rtc integration. The root cause is improper sanitization of user input in the video stream configuration (config.yaml), permitting injection of system commands via the exec: dire...

9.1CVSS5.6AI score0.02874EPSS
Exploits8References2Affected Software1
OSV
OSV
added 2026/02/06 7:16 p.m.6 views

CVE-2026-25643 Frigate Affected by Authenticated Remote Command Execution (RCE) and Container Escape

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...

9.1CVSS5.6AI score0.02874EPSS
Exploits8References4
EUVD
EUVD
added 2026/02/06 7:16 p.m.7 views

EUVD-2026-5586

Frigate is a network video recorder NVR with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution RCE vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream...

9.1CVSS5.5AI score0.02874EPSS
Exploits8References2
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.11 views

PT-2026-6784

Name of the Vulnerable Software and Affected Versions Frigate versions prior to 0.16.4 Description Frigate is a network video recorder NVR with realtime local object detection for IP cameras. A critical Remote Command Execution RCE issue exists in the Frigate integration with go2rtc. The...

9.1CVSS5.7AI score0.02874EPSS
Exploits8References10
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.11 views

Frigate 安全漏洞

Frigate is a complete native NVR designed by Blake Blackshear for home assistants with AI object detection capabilities. Versions of Frigate prior to 0.16.4 contained a security vulnerability. This vulnerability stemmed from uncleaned user input in video stream configurations, which could lead to...

9.1CVSS5.8AI score0.02874EPSS
Exploits8References3
GithubExploit
GithubExploit
added 2026/02/05 9:23 p.m.177 views

Exploit for CVE-2026-25643

CVE-2026-25643: Frigate NVR = 0.16.3 Authenticated RCE Ex...

5.5AI score0.02874EPSS
Exploits8
Rows per page
Query Builder