Lucene search
K

952 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-11900

Malicious code in bioql PyPI...

6.8CVSS6.5AI score0.00319EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-42689

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00472EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-34772

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00239EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-34774

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01208EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2023-12790

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01172EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-36284

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00345EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-35743

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.00188EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/09 12:0 a.m.6 views

TRENDnet TV-IP110WN 安全漏洞

The TRENDnet TV-IP110WN is a wireless webcam from Trendnet, Inc. A security vulnerability exists in TRENDnet TV-IP110WN version 1.2.2, which stems from a least privilege violation in the file /server/boa.conf...

7.3CVSS6.9AI score0.00139EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.7 views

The vulnerability of the /vb.htm component in the wireless IP camera software of D-Link DCS-6010L allows a attacker to execute XSS attacks.

The vulnerability of the /vb.htm component in the microprogramming software of the D-Link DCS-6010L wireless IP camera is related to the lack of measures taken to protect the website structure when processing the paratest parameter. Exploiting this vulnerability allows a malicious actor to carry...

4CVSS5.4AI score0.12684EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/07/13 7:6 p.m.5 views

CVE-2025-7503

An OEM IP camera manufactured by Shenzhen Liandian Communication Technology LTD exposes a Telnet service port 23 with undocumented, default credentials. The Telnet service is enabled by default and is not disclosed or configurable via the device’s web interface or user manual. An attacker with...

10CVSS7.7AI score0.00558EPSS
Exploits1References1
NVD
NVD
added 2025/07/11 7:15 p.m.7 views

CVE-2025-7503

An OEM IP camera manufactured by Shenzhen Liandian Communication Technology LTD exposes a Telnet service port 23 with undocumented, default credentials. The Telnet service is enabled by default and is not disclosed or configurable via the device’s web interface or user manual. An attacker with...

10CVSS0.00558EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/07/11 6:53 p.m.5 views

CVE-2025-7503

An OEM IP camera manufactured by Shenzhen Liandian Communication Technology LTD exposes a Telnet service port 23 with undocumented, default credentials. The Telnet service is enabled by default and is not disclosed or configurable via the device’s web interface or user manual. An attacker with...

10CVSS8.3AI score0.00558EPSS
Exploits1References1
CVE
CVE
added 2025/07/11 6:53 p.m.84 views

CVE-2025-7503

CVE-2025-7503 affects Shenzhen Liandian OEM IP camera (AppFHE1_V1.0.6.0) where a Telnet service (port 23) is enabled by default and protected by undocumented, hard-coded credentials. A root-level shell can be obtained over the network, enabling remote code execution and privilege escalation. The ...

10CVSS8.3AI score0.00558EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/07/11 6:53 p.m.10 views

CVE-2025-7503

An OEM IP camera manufactured by Shenzhen Liandian Communication Technology LTD exposes a Telnet service port 23 with undocumented, default credentials. The Telnet service is enabled by default and is not disclosed or configurable via the device’s web interface or user manual. An attacker with...

10CVSS0.00558EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/07/11 12:0 a.m.4 views

PT-2025-29277

Name of the Vulnerable Software and Affected Versions: Shenzhen Liandian Communication Technology LTD OEM IP Camera version AppFHE1 V1.0.6.0 Description: An OEM IP camera manufactured by Shenzhen Liandian Communication Technology LTD exposes a Telnet service port 23 with undocumented, default...

10CVSS7.7AI score0.00558EPSS
Exploits1References17
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.6 views

The vulnerability of the web interface of IP camera software and digital/netscreen video recorders from Avtech allows a intruder to perform a CSRF attack.

The vulnerability of the web interface of IP camera software and digital/netscreen recorders from Avtech relates to the manipulation of cross-site requests. Exploiting this vulnerability allows a remote attacker to execute a CSRF attack...

5CVSS5.5AI score0.00246EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/07/03 3:23 p.m.12 views

CVE-2025-34056

An OS command injection vulnerability exists in AVTECH IP camera, DVR, and NVR devices via the PwdGrp.cgi endpoint, which handles user and group management operations. Authenticated users can supply input through the pwd or grp parameters, which are directly embedded into system commands without...

9.4CVSS8.3AI score0.01802EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/03 3:22 p.m.14 views

CVE-2025-34053

An authentication bypass vulnerability exists in AVTECH IP camera, DVR, and NVR devices’ streamd web server. The strstr function is used to identify ".cab" requests, allowing any URL containing ".cab" to bypass authentication and access protected endpoints...

6.9CVSS7.5AI score0.0055EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/01 2:47 p.m.5 views

CVE-2025-34066 AVTECH IP camera, DVR, and NVR Devices Unauthenticated Information Disclosure

An improper certificate validation vulnerability exists in AVTECH IP cameras, DVRs, and NVRs due to the use of wget with --no-check-certificate in scripts like SyncCloudAccount.sh and SyncPermit.sh. This exposes HTTPS communications to man-in-the-middle MITM attacks...

8.3CVSS7AI score0.00269EPSS
Exploits0References5
CVE
CVE
added 2025/07/01 2:46 p.m.25 views

CVE-2025-34056

CVE-2025-34056 affects AVTECH IP camera, DVR, and NVR devices. The vulnerability is an OS command injection in the PwdGrp.cgi endpoint that manages users/groups. Authenticated users can pass input via the pwd or grp parameters, which are embedded into system commands without proper sanitization, ...

9.4CVSS7.7AI score0.01802EPSS
Exploits0References5
Rows per page
Query Builder