28 matches found
VulnCheck KEV: CVE-2022-34538
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/vca/bia/addacph.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34536
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 allows attackers to access the core log file and perform session hijacking via a crafted session token...
CVE-2022-34536
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 allows attackers to access the core log file and perform session hijacking via a crafted session token...
CVE-2022-34535
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 allows unauthenticated attackers to view internal paths and scripts via web files...
CVE-2022-34538
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/vca/bia/addacph.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34540
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/vca/license/licensetok.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34539
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/curltest.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34535
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 allows unauthenticated attackers to view internal paths and scripts via web files...
CVE-2022-34539
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/curltest.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34537
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a cross-site scripting XSS vulnerability via the component biaoneshot.cgi...
CVE-2022-34540
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/vca/license/licensetok.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34536
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 allows attackers to access the core log file and perform session hijacking via a crafted session token...
CVE-2022-34537
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a cross-site scripting XSS vulnerability via the component biaoneshot.cgi...
CVE-2022-34539
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/curltest.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34539
CVE-2022-34539 affects Digital Watchdog DW MEGApix IP cameras (version A7.2.2_20211029). The flaw is in the /admin/curltest.cgi component and is exploitable via a crafted POST request, enabling command injection. Public documents corroborate a high-severity impact (CVSSv3.1: 8.8; Network vector, ...
CVE-2022-34540
CVE-2022-34540 affects Digital Watchdog DW MEGApix IP cameras (version A7.2.2_20211029). The vulnerable component is /admin/vca/license/license_tok.cgi, with a command-injection flaw exploitable via a crafted POST request. Affected product behavior and impact are described in multiple sources; PT...
CVE-2022-34540
Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a command injection vulnerability in the component /admin/vca/license/licensetok.cgi. This vulnerability is exploitable via a crafted POST request...
CVE-2022-34537
The CVE-2022-34537 entry concerns Digital Watchdog DW MEGApix IP cameras with firmware version A7.2.2_20211029, where a cross-site scripting (XSS) vulnerability exists in the bia_oneshot.cgi component. According to the provided data, the vulnerability is exploitable over network, has low privileg...
CVE-2022-34535
Affected product: Digital Watchdog DW MEGApix IP cameras (firmware A7.2.2_20211029). Issue: Unauthenticated access allows viewing internal paths and scripts via web files. Impact: Confidentiality impact described as high in CVSS, with no information on exploitation details from the provided sourc...
PT-2022-22197 · Digital Watchdog · Dw Megapix Ip Cameras
Name of the Vulnerable Software and Affected Versions: Digital Watchdog DW MEGApix IP cameras version A7.2.2 20211029 Description: A command injection issue was found in the /admin/vca/bia/addacph.cgi component. This issue can be exploited through a crafted POST request. Recommendations: For...