Lucene search
K

955 matches found

Positive Technologies
Positive Technologies
added 2025/06/23 12:0 a.m.5 views

PT-2025-26604 · Ncr · Ncr Itm Web Terminal

Name of the Vulnerable Software and Affected Versions: NCR ITM Web terminal versions 4.4.0 through 4.4.4 Description: The issue allows a remote attacker to execute arbitrary code via a crafted script to the IP camera URL component. Recommendations: For versions 4.4.0 through 4.4.4, consider...

9.8CVSS7.4AI score0.00903EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 10:39 a.m.3 views

CVE-2024-47789

UNSUPPORTED WHEN ASSIGNED This vulnerability exists in D3D Security IP Camera D8801 due to usage of weak authentication scheme of the HTTP header protocol where authorization tag contain a Base-64 encoded username and password. A remote attacker could exploit this vulnerability by crafting a HTTP...

8.7CVSS7.2AI score0.00342EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:0 a.m.6 views

CVE-2024-47790

UNSUPPORTED WHEN ASSIGNED This vulnerability exists in D3D Security IP Camera D8801 due to usage of insecure Real-Time Streaming Protocol RTSP version for live video streaming. A remote attacker could exploit this vulnerability by crafting a RTSP packet leading to unauthorized access to live feed...

8.7CVSS7.2AI score0.00472EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:35 a.m.7 views

CVE-2024-41623

An issue in D3D Security D3D IP Camera D8801 v.V9.1.17.1.4-20180428 allows a local attacker to execute arbitrary code via a crafted payload...

9.8CVSS7.5AI score0.00643EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:23 a.m.8 views

CVE-2024-51362

The LSC Smart Connect Indoor IP Camera V7.6.32 is vulnerable to an information disclosure issue where live camera footage can be accessed through the RTSP protocol on port 8554 without requiring authentication. This allows unauthorized users with network access to view the camera's feed,...

6.5CVSS6.5AI score0.00295EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:5 a.m.5 views

CVE-2023-30354

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 does not defend against physical access to U-Boot via the UART: the Wi-Fi password is shown, and the hardcoded boot password can be inserted for console access...

9.8CVSS7AI score0.00445EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:58 a.m.8 views

CVE-2023-6118

Path Traversal: '/../filedir' vulnerability in Neutron IP Camera allows Absolute Path Traversal. This issue affects IP Camera: before b1130.1.0.1...

7.5CVSS7.1AI score0.00761EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:39 a.m.13 views

CVE-2023-0773

The vulnerability exists in Uniview IP Camera due to identification and authentication failure at its web-based management interface. A remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable device. Successful exploitation of this vulnerabili...

9.8CVSS7.5AI score0.01172EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:27 a.m.8 views

CVE-2023-30146

Assmann Digitus Plug IP Camera HT-IP211HDP, version 2.000.022 allows unauthenticated attackers to download a copy of the camera's settings and the administrator credentials...

7.5CVSS7AI score0.0064EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:42 a.m.7 views

CVE-2023-30353

Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows unauthenticated remote code execution via an XML document...

9.8CVSS8.1AI score0.01208EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:46 a.m.5 views

CVE-2023-30356

Missing Support for an Integrity Check in Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows attackers to update the device with crafted firmware...

7.5CVSS7AI score0.00266EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:40 p.m.8 views

CVE-2022-41677

An information disclosure vulnerability was discovered in Bosch IP camera devices allowing an unauthenticated attacker to retrieve information like capabilities about the device itself and network settings of the device, disclosing possibly internal network settings if the device is connected to...

5.3CVSS6.7AI score0.0059EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:22 a.m.6 views

CVE-2019-9676

Buffer overflow vulnerability found in some Dahua IP Camera devices IPC-HFW1XXX,IPC-HDW1XXX,IPC-HFW2XXX Build before 2018/11. The vulnerability exits in the function of redirection display for serial port printing information, which can not be used by product basic functions. After an attacker lo...

7.8CVSS8.1AI score0.00448EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:19 a.m.11 views

CVE-2017-8225

On Wireless IP Camera P2P WIFICAM devices, access to .ini files containing credentials is not correctly checked. An attacker can bypass authentication by providing an empty loginuse parameter and an empty loginpas parameter in the URI...

9.8CVSS7.1AI score0.18005EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:33 a.m.10 views

CVE-2019-14458

VIVOTEK IP Camera devices with firmware before 0x20x allow a denial of service via a crafted HTTP header...

7.8CVSS7.1AI score0.01919EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:58 a.m.6 views

CVE-2017-8223

On Wireless IP Camera P2P WIFICAM devices, an attacker can use the RTSP server on port 10554/tcp to watch the streaming without authentication via tcp/av01 or tcp/av00...

7.5CVSS8AI score0.04339EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:53 a.m.6 views

CVE-2017-8224

Wireless IP Camera P2P WIFICAM devices have a backdoor root account that can be accessed with TELNET...

10CVSS7AI score0.08655EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:11 a.m.11 views

CVE-2013-4976

Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials...

9.8CVSS7AI score0.36112EPSS
Exploits8References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:3 a.m.5 views

CVE-2017-8222

Wireless IP Camera P2P WIFICAM devices have an "Apple Production IOS Push Services" private RSA key and certificate stored in /system/www/pem/ck.pem inside the firmware, which allows attackers to obtain sensitive information...

7.5CVSS7.7AI score0.04258EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:57 a.m.5 views

CVE-2017-8221

Wireless IP Camera P2P WIFICAM devices rely on a cleartext UDP tunnel protocol aka the Cloud feature for communication between an Android application and a camera device, which allows remote attackers to obtain sensitive information by sniffing the network...

7.5CVSS7.6AI score0.0271EPSS
Exploits3References1
Rows per page
Query Builder