Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2025/11/25 8:56 p.m.12 views

CVE-2018-25126

Shenzhen TVT Digital Technology Co., Ltd. NVMS-9000 firmware used by many white-labeled DVR/NVR/IPC products contains hardcoded API credentials and an OS command injection flaw in its configuration services. The web/API interface accepts HTTP/XML requests authenticated with a fixed vendor...

9.3CVSS7.8AI score0.03696EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/24 9:31 p.m.4 views

EUVD-2025-199000

Shenzhen TVT Digital Technology Co., Ltd. NVMS-9000 firmware used by many white-labeled DVR/NVR/IPC products contains hardcoded API credentials and an OS command injection flaw in its configuration services. The web/API interface accepts HTTP/XML requests authenticated with a fixed vendor...

9.3CVSS7.3AI score0.03696EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/11/24 8:30 p.m.14 views

CVE-2018-25126 TVT NVMS-9000 Hard-coded API Credentials & Command Injection

Shenzhen TVT Digital Technology Co., Ltd. NVMS-9000 firmware used by many white-labeled DVR/NVR/IPC products contains hardcoded API credentials and an OS command injection flaw in its configuration services. The web/API interface accepts HTTP/XML requests authenticated with a fixed vendor...

9.3CVSS0.03696EPSS
Exploits0References5
CVE
CVE
added 2025/11/24 8:30 p.m.24 views

CVE-2018-25126

CVE-2018-25126 affects Shenzhen TVT NVMS-9000 firmware, used in many white-labeled DVR/NVR/IPC products. The issue arises from hardcoded API credentials and an OS command injection flaw in the configuration services: the web/API interface accepts HTTP/XML requests authenticated with a fixed vendo...

9.3CVSS7.4AI score0.03696EPSS
In wildExploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-2592

Malware in sbrugna...

5CVSS6.4AI score0.02073EPSS
Exploits0References4
Redos
Redos
added 2024/04/04 12:0 a.m.29 views

ROS-20240404-18

Vulnerability in the OpenVAS database management system's OpenVAS scanning and vulnerability management tool MariaDB is associated with uncontrolled resource consumption when connecting to ports 3306 and 4567. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a...

7.5CVSS6.8AI score0.02021EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/12/04 9:57 a.m.2 views

mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS5.8AI score0.02021EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/11/08 3:38 p.m.5 views

mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS5.8AI score0.02021EPSS
Exploits0References4
OSV
OSV
added 2023/10/20 11:6 a.m.3 views

OESA-2023-1750 mariadb security update

MariaDB turns data into structured information in a wide array of applications, ranging from banking to websites. It is an enhanced, drop-in replacement for MySQL. MariaDB is used because it is fast, scalable and robust, with a rich ecosystem of storage engines, plugins and many other tools make ...

7.5CVSS6.7AI score0.02021EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/10/12 1:33 p.m.6 views

mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS5.8AI score0.02021EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/12 1:24 p.m.4 views

mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS5.8AI score0.02021EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/10/06 12:0 a.m.6 views

The vulnerability of the scanning and management tools in OpenVAS’s MariaDB database system allows attackers to cause service interruptions.

The vulnerability of the scanning and vulnerability management tool in the OpenVAS database management system, MariaDB, is related to an uncontrolled resource consumption when connected to ports 3306 and 4567. Exploiting this vulnerability could allow a malicious actor to cause service...

7.8CVSS7.4AI score0.02021EPSS
Exploits0References7Affected Software4
SUSE CVE
SUSE CVE
added 2023/09/27 2:3 a.m.2 views

SUSE CVE-2023-5157

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS7.2AI score0.02021EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/09/19 2:43 p.m.7 views

mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS5.8AI score0.02021EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2021/12/28 12:0 a.m.328 views

Backdoor.Win32.Visiotrol.10 Insecure Password Storage

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/f9dc0a462ada737f36efafac56f22b97.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Visiotrol.10 Vulnerability: Insecure Password Storage Description: The malware listen...

7.4AI score
Exploits0
CNVD
CNVD
added 2018/04/12 12:0 a.m.1 views

Multiple Vulnerabilities in TVT DVR/NVR/IPC

Shenzhen Tongwei Digital Technology Co., Ltd TVT for short is an international first-class product and system solution provider in the field of video security integrating R&D, production, sales and service, providing video security products and solutions with core competitiveness for users in mor...

7.8AI score
Exploits0References1
Prion
Prion
added 2012/06/13 3:55 p.m.19 views

Authentication flaw

The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages, which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted packet to UDP port 4567, as demonstrated by a replay attack...

5CVSS7.4AI score0.02073EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2012/06/13 3:0 p.m.28 views

CVE-2012-2606

The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages, which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted packet to UDP port 4567, as demonstrated by a replay attack...

6.9AI score0.02073EPSS
Exploits0References3
CVE
CVE
added 2012/06/13 3:0 p.m.40 views

CVE-2012-2606

Bradford Network Sentry before 5.3.3 contains an authentication flaw in the agent listening on UDP port 4567. The lack of authentication allows a remote attacker to trigger the display of arbitrary text on a workstation via a crafted UDP packet, demonstrated by a replay attack. Affected product i...

5CVSS7.2AI score0.02073EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder