Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:23 a.m.10 views

CVE-2018-7828

A Cross-Site Request Forgery CSRF vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera...

8.8CVSS6.9AI score0.00572EPSS
Exploits0References1
CNVD
CNVD
added 2019/05/24 12:0 a.m.4 views

Schneider Electric 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera Cross-Site Request Forgery Vulnerability

Schneider Electric 1st Gen Pelco Sarix Enhanced Camera and Schneider Electric Spectra Enhanced PTZ Camera are products of Schneider Electric, France. The Schneider Electric 1st Gen Pelco Sarix Enhanced Camera is a series of fixed IP cameras and the Schneider Electric Spectra Enhanced PTZ Camera i...

8.8CVSS6.9AI score0.00572EPSS
Exploits0References1
CNVD
CNVD
added 2019/05/24 12:0 a.m.2 views

Schneider Electric 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera Arbitrary OS Command Execution Vulnerability

Schneider Electric 1st Gen Pelco Sarix Enhanced Camera and Schneider Electric Spectra Enhanced PTZ Camera are products of Schneider Electric, France. The Schneider Electric 1st Gen Pelco Sarix Enhanced Camera is a series of fixed IP cameras and the Schneider Electric Spectra Enhanced PTZ Camera i...

9CVSS7.3AI score0.01721EPSS
Exploits1References1
CNVD
CNVD
added 2019/05/24 12:0 a.m.3 views

Schneider Electric 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera Cross-Site Request Forgery Vulnerability (CNVD-2019-16260)

Schneider Electric 1st Gen Pelco Sarix Enhanced Camera and Schneider Electric Spectra Enhanced PTZ Camera are products of Schneider Electric, France. The Schneider Electric 1st Gen Pelco Sarix Enhanced Camera is a series of fixed IP cameras and the Schneider Electric Spectra Enhanced PTZ Camera i...

5.4CVSS6.9AI score0.00818EPSS
Exploits1References1
NVD
NVD
added 2019/05/22 8:29 p.m.21 views

CVE-2018-7827

A Cross-Site Scripting XSS vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which a remote attacker can execute arbitrary HTML and script code in a user’s browser session...

5.4CVSS5.3AI score0.00818EPSS
Exploits1References1
OSV
OSV
added 2019/05/22 8:29 p.m.2 views

CVE-2018-7827

A Cross-Site Scripting XSS vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which a remote attacker can execute arbitrary HTML and script code in a user’s browser session...

5.4CVSS6AI score0.00818EPSS
Exploits1References1
Prion
Prion
added 2019/05/22 8:29 p.m.19 views

Cross site scripting

A Cross-Site Scripting XSS vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which a remote attacker can execute arbitrary HTML and script code in a user’s browser session...

3.5CVSS5.3AI score0.00818EPSS
Exploits1References1Affected Software59
Prion
Prion
added 2019/05/22 8:29 p.m.16 views

Cross site request forgery (csrf)

A Cross-Site Request Forgery CSRF vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera...

6.8CVSS8.6AI score0.00572EPSS
Exploits0References1Affected Software59
Prion
Prion
added 2019/05/22 8:29 p.m.15 views

Design/Logic Flaw

An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which allows an attacker to execute arbitrary system commands...

9CVSS8.8AI score0.01721EPSS
Exploits1References1Affected Software59
CVE
CVE
added 2019/05/22 7:35 p.m.76 views

CVE-2018-7829

The CVE-2018-7829 entry affects Schneider Electric Pelco Sarix/Spectra Cameras (Sarix Enhanced and Spectra Enhanced PTZ) with an improper neutralization of special elements in a query that enables an attacker to execute arbitrary OS commands. The ZeroScience ZSL-2017 report details an authenticat...

9CVSS8.8AI score0.01721EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/05/22 7:34 p.m.69 views

CVE-2018-7828

CVE-2018-7828 is a CSRF vulnerability in Schneider Electric’s Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera. The issue stems from a web interface that does not adequately validate requests from trusted users, enabling an authenticated user to perform unintended actions by visiting a...

8.8CVSS8.1AI score0.00572EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/05/22 7:34 p.m.15 views

CVE-2018-7828

A Cross-Site Request Forgery CSRF vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera...

8.2AI score0.00572EPSS
Exploits0References1
CVE
CVE
added 2019/05/22 7:33 p.m.85 views

CVE-2018-7827

CVE-2018-7827 is a publicly documented Cross-Site Scripting (XSS) vulnerability in Schneider Electric 1st Gen Pelco Sarix Enhanced Cameras and Spectra Enhanced PTZ Cameras. Multiple connected sources (NVD, Red Hat, CNVD, CVE listing) describe an XSS that allows a remote attacker to cause arbitrar...

5.4CVSS5.3AI score0.00818EPSS
Exploits1References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/03/06 12:0 a.m.3 views

The vulnerability of the web interface of the microprogramming software for Pelco cameras, models Sarix Enhanced and Spectra Enhanced, allows a intruder to execute any JavaScript code in the user’s browser.

The vulnerability of the web interfaces of Pelco Sarix Enhanced and Spectra Enhanced microprogramming systems lies in the insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary JavaScript code in the user’s browser...

8.8CVSS6.3AI score0.00818EPSS
Exploits1References1Affected Software59
BDU FSTEC
BDU FSTEC
added 2019/03/06 12:0 a.m.5 views

The vulnerability of the microprogramming software used in Pelco Sarix Enhanced and Spectra Enhanced cameras arises from insufficient verification of the authenticity of the requests being sent. This allows intruders to gain access to the camera’s interface.

The vulnerability of the microprogramming software used in Pelco Sarix Enhanced and Spectra Enhanced cameras is related to insufficient verification of the authenticity of the requests being sent. Exploiting this vulnerability can allow a intruder to gain access to the camera through a specially...

9CVSS7.6AI score0.00572EPSS
Exploits0References2Affected Software59
BDU FSTEC
BDU FSTEC
added 2019/03/06 12:0 a.m.5 views

The vulnerability of the microprogrammed software of Pelco Sarix Enhanced and Spectra Enhanced cameras, related to insufficient neutralization of specific elements in the request, allows a intruder to execute arbitrary system commands.

The vulnerability of the microprogrammed software in Pelco Sarix Enhanced and Spectra Enhanced cameras is related to the insufficient neutralization of specific elements in the request. Exploiting this vulnerability can allow a intruder to execute arbitrary system commands...

9CVSS7.9AI score0.01721EPSS
Exploits1References1Affected Software59
seebug.org
seebug.org
added 2017/12/08 12:0 a.m.40 views

Schneider Electric Pelco Sarix/Spectra Cameras Root Remote Code Execution

Summary Pelco offers the broadest selection of IP cameras designed for security surveillance in a wide variety of commercial and industrial settings. From our industry-leading fixed and high-speed IP cameras to panoramic, thermal imaging, explosionproof and more, we offer a camera for any...

8AI score
Exploits0
seebug.org
seebug.org
added 2017/12/08 12:0 a.m.43 views

Schneider Electric Pelco Sarix/Spectra Cameras CSRF Enable SSH Root Access

Summary Pelco offers the broadest selection of IP cameras designed for security surveillance in a wide variety of commercial and industrial settings. From our industry-leading fixed and high-speed IP cameras to panoramic, thermal imaging, explosionproof and more, we offer a camera for any...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2017/12/08 12:0 a.m.52 views

Schneider Electric Pelco Sarix/Spectra Cameras Multiple XSS Vulnerabilities

Summary Pelco offers the broadest selection of IP cameras designed for security surveillance in a wide variety of commercial and industrial settings. From our industry-leading fixed and high-speed IP cameras to panoramic, thermal imaging, explosionproof and more, we offer a camera for any...

7AI score
Exploits0
0day.today
0day.today
added 2017/07/11 12:0 a.m.51 views

Schneider Electric Pelco Sarix/Spectra Cameras CSRF Enable SSH Root Access Vulnerability

Pelco IP cameras suffer from a cross site request forgery vulnerability. The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileg...

6.9AI score
Exploits0
Rows per page
Query Builder