23 matches found
CVE-2018-7828
A Cross-Site Request Forgery CSRF vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera...
Schneider Electric 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera Cross-Site Request Forgery Vulnerability
Schneider Electric 1st Gen Pelco Sarix Enhanced Camera and Schneider Electric Spectra Enhanced PTZ Camera are products of Schneider Electric, France. The Schneider Electric 1st Gen Pelco Sarix Enhanced Camera is a series of fixed IP cameras and the Schneider Electric Spectra Enhanced PTZ Camera i...
Schneider Electric 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera Arbitrary OS Command Execution Vulnerability
Schneider Electric 1st Gen Pelco Sarix Enhanced Camera and Schneider Electric Spectra Enhanced PTZ Camera are products of Schneider Electric, France. The Schneider Electric 1st Gen Pelco Sarix Enhanced Camera is a series of fixed IP cameras and the Schneider Electric Spectra Enhanced PTZ Camera i...
Schneider Electric 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera Cross-Site Request Forgery Vulnerability (CNVD-2019-16260)
Schneider Electric 1st Gen Pelco Sarix Enhanced Camera and Schneider Electric Spectra Enhanced PTZ Camera are products of Schneider Electric, France. The Schneider Electric 1st Gen Pelco Sarix Enhanced Camera is a series of fixed IP cameras and the Schneider Electric Spectra Enhanced PTZ Camera i...
CVE-2018-7827
A Cross-Site Scripting XSS vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which a remote attacker can execute arbitrary HTML and script code in a user’s browser session...
CVE-2018-7827
A Cross-Site Scripting XSS vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which a remote attacker can execute arbitrary HTML and script code in a user’s browser session...
Cross site scripting
A Cross-Site Scripting XSS vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which a remote attacker can execute arbitrary HTML and script code in a user’s browser session...
Cross site request forgery (csrf)
A Cross-Site Request Forgery CSRF vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera...
Design/Logic Flaw
An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which allows an attacker to execute arbitrary system commands...
CVE-2018-7829
The CVE-2018-7829 entry affects Schneider Electric Pelco Sarix/Spectra Cameras (Sarix Enhanced and Spectra Enhanced PTZ) with an improper neutralization of special elements in a query that enables an attacker to execute arbitrary OS commands. The ZeroScience ZSL-2017 report details an authenticat...
CVE-2018-7828
CVE-2018-7828 is a CSRF vulnerability in Schneider Electric’s Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera. The issue stems from a web interface that does not adequately validate requests from trusted users, enabling an authenticated user to perform unintended actions by visiting a...
CVE-2018-7828
A Cross-Site Request Forgery CSRF vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera...
CVE-2018-7827
CVE-2018-7827 is a publicly documented Cross-Site Scripting (XSS) vulnerability in Schneider Electric 1st Gen Pelco Sarix Enhanced Cameras and Spectra Enhanced PTZ Cameras. Multiple connected sources (NVD, Red Hat, CNVD, CVE listing) describe an XSS that allows a remote attacker to cause arbitrar...
The vulnerability of the web interface of the microprogramming software for Pelco cameras, models Sarix Enhanced and Spectra Enhanced, allows a intruder to execute any JavaScript code in the user’s browser.
The vulnerability of the web interfaces of Pelco Sarix Enhanced and Spectra Enhanced microprogramming systems lies in the insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code in the user’s browser...
The vulnerability of the microprogramming software used in Pelco Sarix Enhanced and Spectra Enhanced cameras arises from insufficient verification of the authenticity of the requests being sent. This allows intruders to gain access to the camera’s interface.
The vulnerability of the microprogramming software used in Pelco Sarix Enhanced and Spectra Enhanced cameras is related to insufficient verification of the authenticity of the requests being sent. Exploiting this vulnerability can allow a intruder to gain access to the camera through a specially...
The vulnerability of the microprogrammed software of Pelco Sarix Enhanced and Spectra Enhanced cameras, related to insufficient neutralization of specific elements in the request, allows a intruder to execute arbitrary system commands.
The vulnerability of the microprogrammed software in Pelco Sarix Enhanced and Spectra Enhanced cameras is related to the insufficient neutralization of specific elements in the request. Exploiting this vulnerability can allow a intruder to execute arbitrary system commands...
Schneider Electric Pelco Sarix/Spectra Cameras Root Remote Code Execution
Summary Pelco offers the broadest selection of IP cameras designed for security surveillance in a wide variety of commercial and industrial settings. From our industry-leading fixed and high-speed IP cameras to panoramic, thermal imaging, explosionproof and more, we offer a camera for any...
Schneider Electric Pelco Sarix/Spectra Cameras CSRF Enable SSH Root Access
Summary Pelco offers the broadest selection of IP cameras designed for security surveillance in a wide variety of commercial and industrial settings. From our industry-leading fixed and high-speed IP cameras to panoramic, thermal imaging, explosionproof and more, we offer a camera for any...
Schneider Electric Pelco Sarix/Spectra Cameras Multiple XSS Vulnerabilities
Summary Pelco offers the broadest selection of IP cameras designed for security surveillance in a wide variety of commercial and industrial settings. From our industry-leading fixed and high-speed IP cameras to panoramic, thermal imaging, explosionproof and more, we offer a camera for any...
Schneider Electric Pelco Sarix/Spectra Cameras CSRF Enable SSH Root Access Vulnerability
Pelco IP cameras suffer from a cross site request forgery vulnerability. The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileg...