Lucene search
K

227 matches found

CVE
CVE
added 5 days ago9 views

CVE-2026-51597

CVE-2026-51597 affects the Mercury MIPC252W IP camera, version 1.0.5 Build 230306 Rel.79931n. The issue is that RTSP Digest authentication does not expire nonces, enabling an adjacent network attacker to capture a legitimate authentication exchange and replay the nonce and response in a new conne...

9.1CVSS6AI score0.00372EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/06 8:0 p.m.5 views

EUVD-2026-41923

A flaw in the authentication mechanism for video stream requests in Genetec Security Center 5.14.0.0 prior to build 5.14.178.18 may allow an unauthenticated attacker to access live video streams...

7.5CVSS5.9AI score0.00291EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/06 12:0 a.m.16 views

PT-2026-56001

Name of the Vulnerable Software and Affected Versions Genetec Security Center versions 5.14.0.0 through 5.14.178.17 Description A flaw in the authentication mechanism for video stream requests may allow an unauthenticated attacker to access live video streams. Recommendations Update Genetec...

7.5CVSS6.1AI score0.00291EPSS
Exploits0References3
NVD
NVD
added 2026/06/19 12:16 p.m.19 views

CVE-2026-12706

A use-after-free vulnerability was found in FFmpeg's RASC video decoder. The decodemove function initializes a read pointer into a decompressed buffer, but a subsequent reallocation of that same buffer during move-table processing leaves the pointer dangling. An attacker could exploit this by...

6.5CVSS0.00245EPSS
Exploits0References4
NVD
NVD
added 2026/06/18 2:17 p.m.15 views

CVE-2026-12527

A broken authorization boundary in the RTSP media delivery pipeline of Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1V1.0.6.020230803 enables unauthenticated network actors to bypass the device’s credential-enforced live-view workflow and directly retrieve real-tim...

6CVSS0.00154EPSS
Exploits0References1
CVE
CVE
added 2026/06/18 1:55 p.m.16 views

CVE-2026-12527

CVE-2026-12527 affects Shenzhen Liandian Communication Technology LTD V380 IP Camera firmware AppFHE1_V1.0.6.020230803. Root cause: broken authorization boundary in the RTSP media delivery pipeline. This enables unauthenticated network actors to bypass the device’s credential-enforced live-view w...

6CVSS5.3AI score0.00154EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

AiOPMSD Final SQL注入漏洞

AiOPMSD Final is a video stream download tool developed by AiOPMSD Corporation. Version 1.0.0 of AiOPMSD Final contains a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the actor parameter, potentially allowing unauthenticated attackers to execute...

8.8CVSS6.2AI score0.0027EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 11:1 p.m.5 views

CVE-2026-34120

A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the asynchronous parsing of local video stream content due to insufficient alignment and validation of buffer boundaries when processing streaming inputs.An attacker on the same network segment could...

7.1CVSS6.2AI score0.00228EPSS
Exploits0References1
NVD
NVD
added 2026/04/02 6:16 p.m.10 views

CVE-2026-34120

A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the asynchronous parsing of local video stream content due to insufficient alignment and validation of buffer boundaries when processing streaming inputs.An attacker on the same network segment could...

7.1CVSS0.00228EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/02 5:19 p.m.17 views

CVE-2026-34120 Heap-based Buffer Overflow Vulnerability Leading to Denial-of-Service in TP-Link Tapo C520WS

A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the asynchronous parsing of local video stream content due to insufficient alignment and validation of buffer boundaries when processing streaming inputs.An attacker on the same network segment could...

7.1CVSS0.00228EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/02 5:19 p.m.1 views

CVE-2026-34120 Heap-based Buffer Overflow Vulnerability Leading to Denial-of-Service in TP-Link Tapo C520WS

A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the asynchronous parsing of local video stream content due to insufficient alignment and validation of buffer boundaries when processing streaming inputs.An attacker on the same network segment could...

7.1CVSS6.1AI score0.00228EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/02 5:19 p.m.1 views

CVE-2026-34120

A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the asynchronous parsing of local video stream content due to insufficient alignment and validation of buffer boundaries when processing streaming inputs.An attacker on the same network segment could...

7.1CVSS6.1AI score0.00228EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.4 views

PT-2026-29848

A heap-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within the asynchronous parsing of local video stream content due to insufficient alignment and validation of buffer boundaries when processing streaming inputs.An attacker on the same network segment could...

7.1CVSS6.1AI score0.00228EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.9 views

TP-Link Tapo C520WS 安全漏洞

The TP-Link Tapo C520WS is a WiFi camera produced by TP-Link Corporation. The TP-Link Tapo C520WS v2.6 version contains a security vulnerability. This vulnerability arises from insufficient buffer boundary alignment and validation during the asynchronous parsing of local video stream content, whi...

7.1CVSS5.9AI score0.00228EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/27 3:30 p.m.3 views

EUVD-2025-209098

BS Producten Petcam 33.1.0.0818 is vulnerable to Incorrect Access Control. An unauthenticated attacker in physical proximity can associate with this open network. Once connected, the attacker gains access to the camera's private network interface and can retrieve sensitive information, including...

6.5CVSS5.9AI score0.00171EPSS
Exploits0References2
NVD
NVD
added 2026/03/27 3:16 p.m.3 views

CVE-2025-69988

BS Producten Petcam 33.1.0.0818 is vulnerable to Incorrect Access Control. An unauthenticated attacker in physical proximity can associate with this open network. Once connected, the attacker gains access to the camera's private network interface and can retrieve sensitive information, including...

6.5CVSS0.00171EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/02/24 12:0 a.m.141 views

📄 Tattile Cameras 1.181.5 Unauthenticated RTSP Stream Disclosure

Tattile Cameras version 1.181.5 suffer from an unauthenticated and unauthorized live RTSP video stream access. Tattile Cameras 1.181.5 Unauthenticated RTSP Stream Disclosure Vendor: Tattile s.r.l. Product web page: https://www.tattile.com Affected version: Smart+ family: Smart+ Tolling+ Smart+...

8.7CVSS5.5AI score0.00807EPSS
Exploits3
Zero Science Lab
Zero Science Lab
added 2026/02/24 12:0 a.m.129 views

Tattile Cameras 1.181.5 Unauthenticated RTSP Stream Disclosure

Summary Tattile is an Italian manufacturer specializing in advanced ANPR/ALPR, traffic‑enforcement, and machine‑vision camera systems used across intelligent transportation networks, tolling infrastructures, access‑control environments, and industrial automation. Their portfolio includes...

8.7CVSS5.8AI score0.00807EPSS
Exploits3
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.10 views

Frigate 安全漏洞

Frigate is a complete native NVR designed by Blake Blackshear for home assistants with AI object detection capabilities. Versions of Frigate prior to 0.16.4 contained a security vulnerability. This vulnerability stemmed from uncleaned user input in video stream configurations, which could lead to...

9.1CVSS5.8AI score0.02874EPSS
Exploits8References3
CNNVD
CNNVD
added 2026/01/08 12:0 a.m.3 views

FLIR Thermal Camera 访问控制错误漏洞

FLIR Thermal Camera F Series and others are a series of thermal imaging cameras from FLIR, USA. An access control error vulnerability exists in FLIR Thermal Camera F/FC/PT/D Stream version 8.0.0.64, which stems from a lack of authentication and could lead to unauthorized access to the live video...

8.7CVSS6.8AI score0.00422EPSS
Exploits1References6
Rows per page
Query Builder