Lucene search
K

171 matches found

RedhatCVE
RedhatCVE
added 2025/12/19 6:30 a.m.8 views

CVE-2025-68459

RG - AP180, Indoor Wall Plate Wireless AP AP180 series provided by Ruijie Networks Co., Ltd. contain an OS command injection vulnerability. An arbitrary OS command may be executed on the product by an attacker who logs in to the CLI service...

8.6CVSS7.7AI score0.01261EPSS
Exploits0References1
NVD
NVD
added 2025/12/18 6:15 a.m.5 views

CVE-2025-68459

RG - AP180, Indoor Wall Plate Wireless AP AP180 series provided by Ruijie Networks Co., Ltd. contain an OS command injection vulnerability. An arbitrary OS command may be executed on the product by an attacker who logs in to the CLI service...

8.6CVSS0.01261EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/18 5:51 a.m.5 views

EUVD-2025-204038

RG - AP180, Indoor Wall Plate Wireless AP AP180 series provided by Ruijie Networks Co., Ltd. contain an OS command injection vulnerability. An arbitrary OS command may be executed on the product by an attacker who logs in to the CLI service...

8.6CVSS7.1AI score0.01261EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/12/18 5:51 a.m.3 views

CVE-2025-68459

RG - AP180, Indoor Wall Plate Wireless AP AP180 series provided by Ruijie Networks Co., Ltd. contain an OS command injection vulnerability. An arbitrary OS command may be executed on the product by an attacker who logs in to the CLI service...

8.6CVSS7.2AI score0.01261EPSS
Exploits0References2
NVD
NVD
added 2025/12/09 9:15 p.m.10 views

CVE-2021-47731

Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite...

9.8CVSS0.00454EPSS
Exploits1References5
NVD
NVD
added 2025/12/09 9:15 p.m.9 views

CVE-2021-47729

Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'fileslist' parameter that allows attackers to inject malicious HTML and script code. Attackers can send a POST request to /cgi-bin/getfile.php with crafted payload to execute arbitrary scripts in victim's...

5.4CVSS0.00253EPSS
Exploits1References5
Malwarebytes
Malwarebytes
added 2025/11/24 8:3 a.m.11 views

A week in security (November 17 – November 23)

Last week on Malwarebytes Labs: AI teddy bear for kids responds with sexual content and advice about weapons Fake calendar invites are spreading. Here’s how to remove them and prevent more Budget Samsung phones shipped with unremovable spyware, say researchers What the Flock is happening with...

6.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/11/20 4:34 p.m.6 views

What the Flock is happening with license plate readers?

You’re driving home after another marathon day of work and kid-shuttling, nursing a lukewarm coffee in a mug that's trying too hard. As you turn onto your street, something new catches your eye. It's a tall pole with a small, boxy device perched on top. But it's not a bird-house and there's no...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/17 12:0 a.m.13 views

Examining the Security Posture of an Anti-Crime Ecosystem

Whitepaper called Examining the security posture of an Anti-Crime Ecosystem. The prevalence of anti-crime technology has seen a steep incline in the past few years. Since the introduction of cell phones, the expectation of privacy has gone steeply down. With that in mind, independent security...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/11/05 1:46 p.m.7 views

Should you let Chrome store your driver’s license and passport?

Google has rolled out a new autofill feature for Chrome that goes beyond storing just your passwords, addresses, and credit card numbers. The new "enhanced autofill" can now stash your driver's license, passport details, VIN, or license plate information. Sounds convenient, right? But just becaus...

6.5AI score
Exploits0
NVD
NVD
added 2025/11/04 7:17 p.m.46 views

CVE-2025-12108

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

9.3CVSS0.0044EPSS
Exploits0References1
CVE
CVE
added 2025/11/04 6:43 p.m.19 views

CVE-2025-12108

The CVE-2025-12108 instance affects the Survision LPR Camera system, where authentication is not enforced by default, allowing access to the configuration wizard without login credentials. Affected component: the device’s access/configuration flow (license plate recognition camera system). Impact...

9.3CVSS6.6AI score0.0044EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/04 6:43 p.m.30 views

CVE-2025-12108 Missing Authentication for Critical Function Survision License Plate Recognition Camera

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

9.3CVSS0.0044EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/04 6:43 p.m.5 views

CVE-2025-12108 Missing Authentication for Critical Function Survision License Plate Recognition Camera

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

9.3CVSS6.6AI score0.0044EPSS
Exploits0References1
ICS
ICS
added 2025/11/04 7:0 a.m.12 views

Survision License Plate Recognition Camera

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to fully access the system without requiring authentication. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

9.3CVSS6.9AI score0.0044EPSS
Exploits0References13
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.17 views

Survision LPR Camera 访问控制错误漏洞

Survision LPR Camera is a license plate recognition camera from Survision France. An access control error vulnerability exists in Survision LPR Camera that stems from password protection not being enforced by default, which could lead to unauthorized access...

9.3CVSS6.7AI score0.0044EPSS
Exploits0References2
CVE
CVE
added 2025/10/30 2:12 p.m.24 views

CVE-2025-43027

CVE-2025-43027 affects Genetec Security Center, with a critical issue in the ALPR Manager role that could allow an attacker to gain administrative access to the system. Public descriptions cite a base score of 9.8 (CVSS v3.1) and network, unauthenticated, no-user-interaction exploitability, causi...

9.8CVSS6.7AI score0.0033EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.5 views

PT-2025-44402

Name of the Vulnerable Software and Affected Versions Genetec Security Center affected versions not specified Description A critical severity issue has been identified in the ALPR Manager role of Security Center that could allow attackers to gain administrative access to the Genetec Security Cent...

9.8CVSS6.7AI score0.0033EPSS
Exploits0References8
Schneier on Security
Schneier on Security
added 2025/10/08 4:10 p.m.4 views

Flok License Plate Surveillance

The company Flok is surveilling us as we drive: A retired veteran named Lee Schmidt wanted to know how often Norfolk, Virginia's 176 Flock Safety automated license-plate-reader cameras were tracking him. The answer, according to a U.S. District Court lawsuit filed in September, was more than four...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-25580

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00492EPSS
Exploits0References1
Rows per page
Query Builder