Lucene search
K

12 matches found

Nuclei
Nuclei
added yesterday18 views

QVIS NVR/DVR - Remote Code Execution

QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization. id: CVE-2021-41419 info: name: QVIS NVR/DVR - Remote Code Execution author: me9187 severity: critical description: | QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java...

9.8CVSS7.3AI score0.06757EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2021-28446

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.06757EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-31752

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00309EPSS
Exploits1References2
NVD
NVD
added 2022/07/18 12:15 a.m.25 views

CVE-2021-41419

QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization...

9.8CVSS0.06757EPSS
Exploits1References3
NVD
NVD
added 2022/07/18 12:15 a.m.17 views

CVE-2021-44954

In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration...

7.8CVSS0.00309EPSS
Exploits1References2
OSV
OSV
added 2022/07/18 12:15 a.m.6 views

CVE-2021-41419

QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization...

9.8CVSS5.9AI score0.06757EPSS
Exploits1References3
Prion
Prion
added 2022/07/18 12:15 a.m.19 views

Design/Logic Flaw

In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration...

4.3CVSS7.7AI score0.00309EPSS
Exploits1References2Affected Software2
Prion
Prion
added 2022/07/18 12:15 a.m.18 views

Deserialization of untrusted data

QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization...

7.5CVSS9.6AI score0.06757EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2022/07/17 11:27 p.m.73 views

CVE-2021-44954

CVE-2021-44954 affects QVIS NVR DVR prior to 2021-12-13. A sudo misconfiguration allows local privilege escalation from the qvisdvr user to root. The base score is 7.8 (HIGH) with LOCAL attack vector and no user interaction required. The provided documents do not specify a patch/version for remed...

7.8CVSS7.7AI score0.00309EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/07/17 11:27 p.m.20 views

CVE-2021-44954

In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration...

7.9AI score0.00309EPSS
Exploits1References2
CVE
CVE
added 2022/07/17 11:23 p.m.69 views

CVE-2021-41419

CVE-2021-41419 affects QVIS NVR/DVR firmware prior to 2021-12-13. The vulnerability stems from Java deserialization and permits remote code execution, enabling an attacker to execute arbitrary code with the device’s privileges, potentially leading to full system compromise. The CVSS v3.1 score is...

9.8CVSS9.6AI score0.06757EPSS
In wildExploits1References3Affected Software1
Cvelist
Cvelist
added 2022/07/17 11:23 p.m.21 views

CVE-2021-41419

QVIS NVR DVR before 2021-12-13 is vulnerable to Remote Code Execution via Java deserialization...

9.9AI score0.06757EPSS
Exploits1References3
Rows per page
Query Builder