Lucene search
+L

21 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/02/04 12:0 a.m.7 views

VulnCheck KEV: CVE-2020-24219

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can send crafted unauthenticated HTTP requests to exploit path traversal and pattern-matching programming flaws, and retrieve any file from the device's file system, including the configuration file with t...

7.8CVSS5.8AI score0.23636EPSS
In wildExploits3References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-16953

Malware in sbrugna...

9.8CVSS9.2AI score0.01959EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2020/10/19 12:0 a.m.234 views

HiSilicon Video Encoder 1.97 File Disclosure / Path Traversal

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - unauthenticated file disclosure via path traversal Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: https://www.szuray.com/ Software Link: N/A Version: up to 1.97 Tested on: Linux CVE: CVE-2020-24219 Vendors: URayTech...

7.8CVSS0.3AI score0.23636EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/10/19 12:0 a.m.261 views

HiSilicon Video Encoder Backdoor Password

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - full admin access via backdoor password Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24215 Vendors: URayTech, J-Tech Digital...

0.6AI score0.1976EPSS
Exploits3
0day.today
0day.today
added 2020/10/19 12:0 a.m.96 views

HiSilicon Video Encoders - Unauthenticated RTSP buffer overflow (DoS) Exploit

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - unauthenticated RTSP buffer overflow DoS Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24214 Vendors: URayTech, J-Tech Digita...

9.8CVSS9.7AI score0.35393EPSS
Exploits4
Packet Storm
Packet Storm
added 2020/10/19 12:0 a.m.251 views

HiSilicon Video Encoder Command Injection

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - RCE via unauthenticated command injection Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24217 Vendors: URayTech, J-Tech...

0.6AI score0.40302EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/10/19 12:0 a.m.346 views

HiSilicon Video Encoders - RCE via unauthenticated command injection

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - RCE via unauthenticated command injection Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24217 Vendors: URayTech, J-Tech...

9.8CVSS7AI score0.40302EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/10/19 12:0 a.m.225 views

HiSilicon Video Encoders - Unauthenticated RTSP buffer overflow (DoS)

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - unauthenticated RTSP buffer overflow DoS Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24214 Vendors: URayTech, J-Tech Digita...

9.8CVSS9.7AI score0.35393EPSS
Exploits4
Exploit DB
Exploit DB
added 2020/10/19 12:0 a.m.419 views

HiSilicon video encoders - RCE via unauthenticated upload of malicious firmware

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - RCE via unauthenticated upload of malicious firmware Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24217 Vendors: URayTech,...

9.8CVSS9.6AI score0.40302EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/10/19 12:0 a.m.272 views

HiSilicon Video Encoders - Full admin access via backdoor password

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - full admin access via backdoor password Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24215 Vendors: URayTech, J-Tech Digital...

9.8CVSS9.7AI score0.1976EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/10/19 12:0 a.m.310 views

HiSilicon Video Encoders - Unauthenticated file disclosure via path traversal

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - unauthenticated file disclosure via path traversal Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: https://www.szuray.com/ Software Link: N/A Version: up to 1.97 Tested on: Linux CVE: CVE-2020-24219 Vendors: URayTech...

7.8CVSS7.7AI score0.23636EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/10/19 12:0 a.m.297 views

HiSilicon Video Encoder Malicious Firmware Code Execution

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - RCE via unauthenticated upload of malicious firmware Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24217 Vendors: URayTech,...

0.3AI score0.40302EPSS
Exploits5
NVD
NVD
added 2020/10/06 2:15 p.m.19 views

CVE-2020-24218

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can log in as root via the password that is hard-coded in the executable file...

9.8CVSS0.01959EPSS
Exploits1References2
OSV
OSV
added 2020/10/06 2:15 p.m.5 views

CVE-2020-24218

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can log in as root via the password that is hard-coded in the executable file...

9.8CVSS7.3AI score0.01959EPSS
Exploits1References2
NVD
NVD
added 2020/10/06 2:15 p.m.26 views

CVE-2020-24219

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can send crafted unauthenticated HTTP requests to exploit path traversal and pattern-matching programming flaws, and retrieve any file from the device's file system, including the configuration file with t...

7.8CVSS0.23636EPSS
Exploits3References3
Prion
Prion
added 2020/10/06 2:15 p.m.11 views

Hardcoded credentials

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can log in as root via the password that is hard-coded in the executable file...

5CVSS9.5AI score0.01959EPSS
Exploits1References2Affected Software2
Prion
Prion
added 2020/10/06 2:15 p.m.25 views

Path traversal

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can send crafted unauthenticated HTTP requests to exploit path traversal and pattern-matching programming flaws, and retrieve any file from the device's file system, including the configuration file with t...

7.8CVSS7.7AI score0.23636EPSS
Exploits3References3Affected Software2
CVE
CVE
added 2020/10/06 1:16 p.m.74 views

CVE-2020-24219

CVE-2020-24219 affects URayTech IPTV/H.264/H.265 video encoders (up to v1.97). The vulnerability is a path traversal/pattern-matching flaw in unauthenticated HTTP handling that allows an attacker to read files from the device, including the configuration file containing the cleartext admin passwo...

7.8CVSS7.6AI score0.23636EPSS
In wildExploits3References3Affected Software1
Cvelist
Cvelist
added 2020/10/06 1:16 p.m.27 views

CVE-2020-24219

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can send crafted unauthenticated HTTP requests to exploit path traversal and pattern-matching programming flaws, and retrieve any file from the device's file system, including the configuration file with t...

7.7AI score0.23636EPSS
Exploits3References3
Cvelist
Cvelist
added 2020/10/06 1:10 p.m.22 views

CVE-2020-24218

An issue was discovered on URayTech IPTV/H.264/H.265 video encoders through 1.97. Attackers can log in as root via the password that is hard-coded in the executable file...

9.6AI score0.01959EPSS
Exploits1References2
Rows per page
Query Builder