4 matches found
EUVD-2022-39715
Malicious code in bioql PyPI...
CVE-2023-51127
CVE-2023-51127 affects Teledyne FLIR AX8 thermal cameras (up to firmware 1.46.16). The vulnerability is a Directory Traversal due to improper access restrictions, allowing an unauthenticated, remote attacker to read arbitrary sensitive files by uploading a specially crafted symbolic-link file. Th...
FLIR AX8 1.46.16 Remote Command Injection Exploit
All FLIR AX8 thermal sensor cameras versions up to and including 1.46.16 are vulnerable to remote command injection. This can be exploited to inject and execute arbitrary shell commands as the root user through the id HTTP POST parameter in the res.php endpoint. This module uses the vulnerability...
CVE-2022-37062
The CVE-2022-37062 issue affects Teledyne FLIR AX8 thermal sensor cameras version up to and including 1.46.16, due to an insecure design from improper directory access restriction that allows an unauthenticated remote attacker to request a URI containing the path to the SQLite users database and ...