Lucene search
K

19 matches found

EUVD
EUVD
added 2026/06/02 12:0 a.m.11 views

EUVD-2026-33967

A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as root on the device...

6.4AI score0.00692EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.11 views

PT-2026-45771

A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as root on the device...

6.4AI score0.00692EPSS
Exploits0References3
CVE
CVE
added 2026/06/02 12:0 a.m.20 views

CVE-2026-30650

Vivotek FD8136 cameras (firmware FD8136-VVTK-0300a) expose a post-authentication remote buffer overflow in the /cgi-bin/admin/eventtask.cgi endpoint. An authenticated attacker can remotely execute arbitrary code with root privileges. The issue is characterized by CVE-2026-30650 with a high impact...

8.8CVSS6.4AI score0.00692EPSS
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2026/03/10 12:0 a.m.161 views

📄 Vivotek Camera Firmware OS 0125c Command Injection

Vivotek Camera Firmware OS versions 0100a through 0125c suffer from a command injection vulnerability. The issue resides in the CGI binary uploadmap.cgi, which operates under the Boa Webserver environment. The vulnerability occurs because the application improperly processes the POSTFILENAME...

10CVSS6AI score0.21219EPSS
Exploits1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.6 views

Vivotek多款产品 安全漏洞

Vivotek FD8365 and others are a camera from China's VIVOTEK Communications Vivotek. A security vulnerability exists in several Vivotek products, which originates from command injection. The following products and versions are affected: FD8365, FD9165, FD9171, FD9187, FD9189, FD9365, FD9371, FD938...

10CVSS6AI score0.21219EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2025/12/04 5:11 p.m.166 views

Exploit for CVE-2019-19936

This exploit is based off of this blog post by Larry Cashdollar...

7.6AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-9744

Malware in sbrugna...

6.1CVSS6.3AI score0.00803EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-4286

Malware in sbrugna...

6.5CVSS6.6AI score0.01194EPSS
Exploits0References2
OSV
OSV
added 2020/05/28 1:15 p.m.4 views

CVE-2020-11950

VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x and before XXXXX-VVTK-0XXXXBeta2 allows an authenticated user to upload and execute a script with resultant execution of OS commands. For example, this affects IT9388-HT devices...

8.8CVSS7.4AI score0.02685EPSS
Exploits0References1
OSV
OSV
added 2020/05/28 1:15 p.m.4 views

CVE-2020-11949

testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x and before XXXXX-VVTK-0XXXXBeta2 allows an authenticated user to obtain arbitrary files from a camera's local filesystem. For example, this affects IT9388-HT devices...

6.5CVSS6.7AI score0.01194EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/04 12:0 a.m.5 views

VIVOTEK Network Camera Series Product Cross-Site Scripting Vulnerability

VIVOTEK Network Camera Series is a series of network camera products from China VIVOTEK. A cross-site scripting vulnerability exists in the syslog.html file of VIVOTEK Network Camera Series products using firmware versions 0x06x to 0x08x, which can be exploited by remote attackers to execute...

6.1CVSS6.8AI score0.00803EPSS
Exploits1References1
CVE
CVE
added 2019/01/03 8:0 p.m.41 views

CVE-2018-18244

The CVE-2018-18244 entry corresponds to a cross-site scripting vulnerability in VIVOTEK Network Camera Series. The affected component is the syslog.html page, exploitable on firmware versions 0x06x to 0x08x. An attacker can remotely inject and execute arbitrary JavaScript in the context of a user...

6.1CVSS6.5AI score0.00803EPSS
Exploits1References2Affected Software1
Packet Storm
Packet Storm
added 2017/11/15 12:0 a.m.45 views

Vivotek IP Cameras Remote Stack Overflow

STX Subject: Vivotek IP Cameras - Remote Stack Overflow Researcher: bashis September-October 2017 PoC: https://github.com/mcw0/PoC Release date: November 13, 2017 Full Disclosure: 43 days Attack Vector: Remote Authentication: Anonymous no credentials needed Firmware Vulnerable: Only 2017 versions...

7.1AI score
Exploits0
CNVD
CNVD
added 2017/06/30 12:0 a.m.2 views

Vulnerabilities in VIVOTEK Network Cameras IB8369, FD8164 and FD816BA

VIVOTEK Network Cameras IB8369, FD8164 and FD816BA are network camera products from VIVOTEK, China. A security vulnerability exists in the /cgi-bin/admin/testserver.cgi file of the Web services in VIVOTEK Network Cameras IB8369, FD8164 and FD816BA. The vulnerability can be exploited to execute...

10CVSS7.7AI score0.82455EPSS
Exploits1References1
CNVD
CNVD
added 2017/06/30 12:0 a.m.1 views

VIVOTEK Network Cameras IB8369, FD8164 and FD816BA Arbitrary File Read Vulnerabilities

VIVOTEK Network Cameras IB8369, FD8164 and FD816BA are network camera products from VIVOTEK, China. A security vulnerability exists in the /cgi-bin/admin/downloadMedias.cgi file of the web server in VIVOTEK Network Cameras IB8369, FD8164 and FD816BA. An attacker can exploit this vulnerability by...

7.5CVSS6.9AI score0.68744EPSS
Exploits1References1
OSV
OSV
added 2017/06/23 10:29 p.m.3 views

CVE-2017-9829

'/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera's Linux filesystem via a crafted HTTP request containing ".." sequences. This vulnerability is already verified on VIVOTEK...

7.5CVSS5.8AI score0.68744EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

Vivotek Cameras Sensitive Information Disclosure

No description provided by source. Exploit Title: Vivotek Full Data Source CONFIG Date: 09/07/12 Author: Alejandro Leon Morales GothicX Author Mail: Gothicxatfreaknetworkdotin Author Web: www.undermx.blogspot.mx Sofware web: www.vivotek.com Vulnerable version: all Tested on: Microsoft windows 7 /...

7.1AI score
Exploits0
0day.today
0day.today
added 2012/07/16 12:0 a.m.35 views

Vivotek Cameras Sensitive Information Disclosure

Exploit for hardware platform in category web applications Exploit Title: Vivotek Full Data Source CONFIG Date: 09/07/12 Author: Alejandro Leon Morales GothicX Author Mail: Gothicxatfreaknetworkdotin Author Web: www.undermx.blogspot.mx Sofware web: www.vivotek.com Vulnerable version: all Tested o...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/07/16 12:0 a.m.33 views

Vivotek Cameras Data Configuration Disclosure

Exploit Title: Vivotek Full Data Source CONFIG Date: 09/07/12 Author: Alejandro Leon Morales GothicX Author Mail: Gothicxatfreaknetworkdotin Author Web: www.undermx.blogspot.mx Sofware web: www.vivotek.com Vulnerable version: all Tested on: Microsoft windows 7 / Vista / XP/ MacOS Dork:...

0.1AI score
Exploits0
Rows per page
Query Builder