27 matches found
EUVD-2024-46813
Malicious code in bioql PyPI...
EUVD-2024-46811
Malicious code in bioql PyPI...
EUVD-2024-46812
Malicious code in bioql PyPI...
Exploit for CVE-2024-5633
PoC for CVE-2024-5633 Longse model LBH30FE200W cameras, as we...
CVE-2024-5632
Longse NVR Network Video Recorder model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password. A user is neither advised to change it during the installation process, nor such a need is described in the manual. As the cameras from the same kit conne...
CVE-2024-5633
Longse model LBH30FE200W cameras, as well as products based on this device, provide an unrestricted access for an attacker located in the same local network to an undocumented binary service CoolView on one of the ports. An attacker with a knowledge of the available commands is able to perform...
CVE-2024-5634
Longse model LBH30FE200W cameras, as well as products based on this device, make use of telnet passwords which follow a specific pattern. Once the pattern is known, brute-forcing the password becomes relatively easy. Additionally, every camera with the same firmware version shares the same...
CVE-2024-5631
Longse NVR Network Video Recorder model NVR3608PGE2W, as well as products based on this device, are transmitting user's login and password to a remote control service without using any encryption. This enables an on-path attacker to eavesdrop the credentials and subsequently obtain access to the...
CVE-2024-5634
Affected product. Longse model LBH30FE200W cameras and devices based on this hardware. Vulnerability summary. Telnet passwords follow a specific pattern; once known, brute-forcing the password becomes relatively easy. All cameras with the same firmware version share the same password. Impact (as ...
CVE-2024-5634
Longse model LBH30FE200W cameras, as well as products based on this device, make use of telnet passwords which follow a specific pattern. Once the pattern is known, brute-forcing the password becomes relatively easy. Additionally, every camera with the same firmware version shares the same...
CVE-2024-5634
Longse model LBH30FE200W cameras, as well as products based on this device, make use of telnet passwords which follow a specific pattern. Once the pattern is known, brute-forcing the password becomes relatively easy. Additionally, every camera with the same firmware version shares the same...
CVE-2024-5633
Longse model LBH30FE200W cameras, as well as products based on this device, provide an unrestricted access for an attacker located in the same local network to an undocumented binary service CoolView on one of the ports. An attacker with a knowledge of the available commands is able to perform...
CVE-2024-5633
Longse model LBH30FE200W cameras, as well as products based on this device, provide an unrestricted access for an attacker located in the same local network to an undocumented binary service CoolView on one of the ports. An attacker with a knowledge of the available commands is able to perform...
CVE-2024-5632
Longse NVR Network Video Recorder model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password. A user is neither advised to change it during the installation process, nor such a need is described in the manual. As the cameras from the same kit conne...
CVE-2024-5632
CVE-2024-5632 affects Longse NVR3608PGE2W and related devices: the firmware/network feature creates a Wi‑Fi network using a default password, with no user guidance to change it during install and no manual indication to do so. This implies a risk of unauthorized access if the default password is ...
CVE-2024-5632
Longse NVR Network Video Recorder model NVR3608PGE2W, as well as products based on this device, create a WiFi network with a default password. A user is neither advised to change it during the installation process, nor such a need is described in the manual. As the cameras from the same kit conne...
CVE-2024-5631
Longse NVR Network Video Recorder model NVR3608PGE2W, as well as products based on this device, are transmitting user's login and password to a remote control service without using any encryption. This enables an on-path attacker to eavesdrop the credentials and subsequently obtain access to the...
CVE-2024-5631
Summary (verified by provided sources): CVE-2024-5631 affects Longse LBH30FE200W cameras and related devices (e.g., NVR3608PGE2W family). The issue enables credential exposure because login/password are transmitted to a remote control service without encryption when a user changes their password,...
CVE-2024-5631
Longse NVR Network Video Recorder model NVR3608PGE2W, as well as products based on this device, are transmitting user's login and password to a remote control service without using any encryption. This enables an on-path attacker to eavesdrop the credentials and subsequently obtain access to the...
Longse NVR Security Vulnerability
Longse NVR is a series of network video recorders from China-based Longse Technology Longse. A security vulnerability exists in the Longse NVR that stems from transmitting a user's login and password to a remote control service without the use of any encryption, allowing an attacker to eavesdrop ...