Lucene search
K

13 matches found

CVE
CVE
added 2026/01/09 11:53 a.m.28 views

CVE-2025-66049

Affected product: Vivotek IP7137 camera with firmware 0200a. Vulnerabilities: (1) information disclosure via RTSP on port 8554 without authentication, exposing live feed; (2) command injection via /cgi-bin/admin/setparam.cgi with parameter system_ntpIt, exploitable by an admin user; (3) path trav...

8.7CVSS5.9AI score0.00366EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-11009

Malware in sbrugna...

7.5CVSS7.5AI score0.01668EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 6:58 a.m.7 views

CVE-2017-8223

On Wireless IP Camera P2P WIFICAM devices, an attacker can use the RTSP server on port 10554/tcp to watch the streaming without authentication via tcp/av01 or tcp/av00...

7.5CVSS8AI score0.04339EPSS
Exploits3References1
Vulnrichment
Vulnrichment
added 2025/03/24 12:0 a.m.7 views

CVE-2025-30112

On 70mai Dash Cam 1S devices, by connecting directly to the dashcam's network and accessing the API on port 80 and RTSP on port 554, an attacker can bypass the device authorization mechanism from the official mobile app that requires a user to physically press on the power button during a...

7.1AI score0.00273EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/06 3:36 a.m.9 views

CVE-2021-26627

Real-time image information exposure is caused by insufficient authentication for activated RTSP port. This vulnerability could allow to remote attackers to send the RTSP requests using ffplay command and lead to leakage a live image...

7.5CVSS7.1AI score0.01377EPSS
Exploits0References1
Prion
Prion
added 2022/04/19 9:15 p.m.15 views

Authentication flaw

Real-time image information exposure is caused by insufficient authentication for activated RTSP port. This vulnerability could allow to remote attackers to send the RTSP requests using ffplay command and lead to leakage a live image...

5CVSS7.6AI score0.01377EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/19 8:26 p.m.26 views

CVE-2021-26627 EDrhyme QCP 200W Information Exposure Vulnerability

Real-time image information exposure is caused by insufficient authentication for activated RTSP port. This vulnerability could allow to remote attackers to send the RTSP requests using ffplay command and lead to leakage a live image...

7.5CVSS7.8AI score0.01377EPSS
Exploits0References1
NVD
NVD
added 2021/04/02 4:15 p.m.26 views

CVE-2019-20464

An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. By default, a mobile application is used to stream over UDP. However, the device offers many more services that also enable streaming. Although the service used by the mobile application requires a...

7.5CVSS0.01668EPSS
Exploits1References2
Prion
Prion
added 2021/04/02 4:15 p.m.25 views

Default credentials

An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. By default, a mobile application is used to stream over UDP. However, the device offers many more services that also enable streaming. Although the service used by the mobile application requires a...

5CVSS7.4AI score0.01668EPSS
Exploits1References1
CVE
CVE
added 2021/04/02 3:32 p.m.40 views

CVE-2019-20464

CVE-2019-20464 affects the Sannce Smart HD Wifi Security Camera EAN 2 950004 595317. The issue is that while the mobile-application streaming over UDP requires a password, other RTSP-based streaming services exposed by the device do not, allowing an unauthenticated attacker to access the video fe...

7.5CVSS7.4AI score0.01668EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2021/04/02 12:0 a.m.7 views

PT-2021-9029 · Sannce · Sannce Smart Hd Wifi Security Camera

Name of the Vulnerable Software and Affected Versions: Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 affected versions not specified Description: An issue was discovered in the Sannce Smart HD Wifi Security Camera, where the device offers multiple streaming services. Although the servi...

7.5CVSS6.9AI score0.01668EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2020/03/30 12:0 a.m.15 views

Wowza Streaming Engine Detection Consolidation

Consolidation of Wowza Streaming Engine detections. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3AI score
Exploits0References1
CNVD
CNVD
added 2017/03/15 12:0 a.m.3 views

Wireless IP Camera (P2P) WIFICAM Unauthorized Access Vulnerability

Wireless IP Camera P2P WIFICAM is a wireless IP camera. The Wireless IP Camera P2P WIFICAM unauthorized access vulnerability allows an attacker to access the camera's built-in RTSP server on port 10554 and watch live video streams without authentication...

6.9AI score
Exploits0References1
Rows per page
Query Builder