30 matches found
EUVD-2024-21907
Malicious code in bioql PyPI...
EUVD-2023-34772
Malicious code in bioql PyPI...
EUVD-2023-34774
Malicious code in bioql PyPI...
EUVD-2023-34777
Malicious code in bioql PyPI...
CVE-2023-30353
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows unauthenticated remote code execution via an XML document...
Information disclosure
An issue in Shenzen Tenda Technology CP3V2.0 V11.10.00.2311090948 allows a local attacker to obtain sensitive information via the password component...
CVE-2024-24488
CVE-2024-24488 affects Shenzen Tenda Technology CP3V2.0 firmware version V11.10.00.2311090948. Reported vulnerability is an information-disclosure issue where a local attacker can obtain sensitive information via the device’s password component. Public documents identify the affected product and ...
CVE-2024-24488
An issue in Shenzen Tenda Technology CP3V2.0 V11.10.00.2311090948 allows a local attacker to obtain sensitive information via the password component...
CVE-2024-24488
An issue in Shenzen Tenda Technology CP3V2.0 V11.10.00.2311090948 allows a local attacker to obtain sensitive information via the password component...
CVE-2023-30356
Missing Support for an Integrity Check in Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows attackers to update the device with crafted firmware...
CVE-2023-30354
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 does not defend against physical access to U-Boot via the UART: the Wi-Fi password is shown, and the hardcoded boot password can be inserted for console access...
CVE-2023-30353
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows unauthenticated remote code execution via an XML document...
CVE-2023-30351
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for root which is stored using weak encryption. This vulnerability allows attackers to connect to the TELNET service or UART by using the exposed credentials...
Remote code execution
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows unauthenticated remote code execution via an XML document...
Hardcoded credentials
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for root which is stored using weak encryption. This vulnerability allows attackers to connect to the TELNET service or UART by using the exposed credentials...
Design/Logic Flaw
Missing Support for an Integrity Check in Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 allows attackers to update the device with crafted firmware...
CVE-2023-30352
CVE-2023-30352 affects Shenzen Tenda Technology IP Camera CP3 (firmware v11.10.00.2211041355). Root cause: hard-coded default password for the RTSP feed, enabling potential unauthorized access. Impact per CVSS: high confidentiality, integrity, and availability (score 9.8). Mitigations from connec...
CVE-2023-30352
Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for the RTSP feed...
CVE-2023-30353
Affected product: Shenzen Tenda Technology IP Camera CP3, version V11.10.00.2211041355. Vulnerability: unauthenticated remote code execution via an XML document. CVSSv3.1: 9.8 (CRITICAL), AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. Root cause and precise exploit details are not provided in the documents...
CVE-2023-30354
The CVE-2023-30354 entry concerns Shenzen Tenda CP3 IP Camera (v11.10.00.2211041355). The issue arises from allowing physical access to U-Boot via UART, which exposes the Wi‑Fi password and enables a hardcoded boot password to be entered for console access. Affected component: U-Boot console on C...