1103 matches found
FLIR Systems FLIR AX8 Thermal Camera 1.32.16 Arbitrary File Disclosure
Summary Thermal Imaging Camera For Continuous Condition and Safety Monitoring FLIR AX8 is a thermal sensor with imaging capabilities. Combining thermal and visual cameras in a small, affordable package, the AX8 provides continuous temperature monitoring and alarming capabilities to protec critica...
FLIR Systems FLIR AX8 Thermal Camera 1.32.16 RTSP Stream Disclosure
Summary Thermal Imaging Camera For Continuous Condition and Safety Monitoring FLIR AX8 is a thermal sensor with imaging capabilities. Combining thermal and visual cameras in a small, affordable package, the AX8 provides continuous temperature monitoring and alarming capabilities to protec critica...
FLIR Systems FLIR AX8 Thermal Camera 1.32.16 Remote Root Exploit
Summary Thermal Imaging Camera For Continuous Condition and Safety Monitoring FLIR AX8 is a thermal sensor with imaging capabilities. Combining thermal and visual cameras in a small, affordable package, the AX8 provides continuous temperature monitoring and alarming capabilities to protec critica...
FLIR Systems FLIR Thermal Traffic Cameras RTSP Stream Disclosure
Summary FLIR TrafiOne is an all-round detection sensor for traffic monitoring and dynamic traffic signal control. Offered in a compact and affordable package, the FLIR TrafiOne uses thermal imaging and Wi-Fi technology to adapt traffic signals based on the presence detection of vehicles, bicycles...
FLIR Systems FLIR Thermal Traffic Cameras Websocket Device Manipulation
Summary FLIR TrafiOne is an all-round detection sensor for traffic monitoring and dynamic traffic signal control. Offered in a compact and affordable package, the FLIR TrafiOne uses thermal imaging and Wi-Fi technology to adapt traffic signals based on the presence detection of vehicles, bicycles...
NovaRad NovaPACS Diagnostics Viewer v8.5 OOB XXE File Disclosure
Summary NovaPACS revolutionary workflow infrastructure has been designed and developed using the expertise of radiology directors, technicians, PACS administrators for over 20 years. This wealth of imaging experience has lead to over 850 installations in more than 15 countries as well as key...
Go Pro Fusion Studio 1.2 Privilege Escalation
Summary Go Pro Fusion Studio is a feature rich editing software that allows you to transform your content into pro-quality videos. Description The application suffers from an unquoted search path issue impacting the service 'GoProFusionDeviceDetectionService' for Windows deployed as part of GoPro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Open Redirect
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Default Credentials
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Service Control DoS
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Hidden Features
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Arbitrary File Attacks
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway XSS Vulnerabilities
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway CSRF Vulnerabilities
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Remote Root Exploit
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Backdoor Jailbreak
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Configuration Download
Summary The new IPn4Gb provides a rugged, industrial strength wireless solution using the new and ultra fast 4G LTE cellular network infrastructure. The IPn4Gb features integrated Firewall, IPSec / VPN & GRE Tunneling, IP/MAC Access Control Lists. The IPn4Gb can transport critical data to and fro...
Ecessa Edge EV150 10.7.4 CSRF Add Superuser Exploit
Summary Internet Failover and Load Balancing for Small Businesses, Stores and Branch Offices. Description The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain...
Ecessa ShieldLink SL175EHQ 10.7.4 CSRF Add Superuser Exploit
Summary Ecessa's ShieldLink 60, 175, 600,1200 & 4000 are advanced, yet highly affordable secure WAN Optimization Controllers that incorporate all of the ISP/WAN link. Description The application interface allows users to perform certain actions via HTTP requests without performing any validity...
Ecessa WANWorx WVR-30 10.7.4 CSRF Add Superuser Exploit
Summary Ecessa's WANworX SD-WAN solutions increase network performance and reliability by leveraging any connection. That can be premium priced MPLS, lower cost broadband, or cellular 4G or LTE. Many of today's WAN deployments are based on older technology that was acceptable when businesses did...
Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway Privilege Escalation
Summary RSLinx Classic is a software platform that allows Logix5000 Programmable Automation Controllers to connect to a wide variety of Rockwell Software applications, and FactoryTalk Linx Gateway is a software that provides an Open Platform Communications OPC Unified Architecture UA server...
Sint Wind PI v01.26.19 Authentication Bypass
Summary A Meteo Station software for Raspberry PI. Capability include telephone answering, webcams, digital cameras, web. A Sint Wind is a wind condition and other meteo data telephone answering machine. This implementation uses a Raspberry PI with an Huawei 3G dongle. The Sint Wind is compatible...
GNU Barcode 0.99 Buffer Overflow
Summary GNU Barcode is a tool to convert text strings to printed bars. It supports a variety of standard codes to represent the textual strings and creates postscript output. Description The vulnerability is caused due to a boundary error in the processing of an input file, which can be exploited...
GNU Barcode 0.99 Memory Leak
Summary GNU Barcode is a tool to convert text strings to printed bars. It supports a variety of standard codes to represent the textual strings and creates postscript output. Description GNU Barcode suffers from a memory leak vulnerability, which can be exploited by malicious people to cause a Do...
Epic Games Launcher 7.9.4-4058369 Insecure File Permissions
Summary Epic Games Launcher is a shareware desktop tool that allows you to buy and download games and other products from Epic Games. Through this program, you can get games like Fortnite, Unreal Tournament, Shadow Complex, and Paragon. Also, you can download tools like Unreal Engine and ARK Dev...
Teradek VidiU Pro 3.0.3 CSRF Change Password Exploit
Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...
Teradek Cube 7.3.6 (snapshot.cgi) Stream Disclosure
Summary Cube packs world-class video quality into a rugged, portable chassis for quick IP video deployments at any location. Each encoder and decoder includes HDMI and 3G-SDI I/O, Ethernet / WiFI connectivity, and full duplex IFB. Description Cube suffers from an unauthenticated and unauthorized...
Teradek Cube 7.3.6 CSRF Change Password Exploit
Summary Cube packs world-class video quality into a rugged, portable chassis for quick IP video deployments at any location. Each encoder and decoder includes HDMI and 3G-SDI I/O, Ethernet / WiFI connectivity, and full duplex IFB. Description The application interface allows users to perform...
Teradek VidiU Pro 3.0.3 (snapshot.cgi) Stream Disclosure
Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...
Teradek Slice 7.3.15 (snapshot.cgi) Stream Disclosure
Summary Built on the award-winning Cube platform, Slice is a rack mount HEVC / H.264 codec designed to fit seamlessly into your broadcast studio. Like the Cube, Slice encoders and decoders includes 3G-SDI and HDMI I/O, Ethernet and WiFi connectivity, and full duplex IFB. Description Slice suffers...
Teradek Slice 7.3.15 CSRF Change Password Exploit
Summary Built on the award-winning Cube platform, Slice is a rack mount HEVC / H.264 codec designed to fit seamlessly into your broadcast studio. Like the Cube, Slice encoders and decoders includes 3G-SDI and HDMI I/O, Ethernet and WiFi connectivity, and full duplex IFB. Description The applicati...
Teradek VidiU Pro 3.0.3 SSRF Vulnerability
Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...
Epic Games Fortnite 4.2-CL-4072250 Insecure File Permissions
Summary Fortnite is a co-op sandbox survival game developed by Epic Games and People Can Fly and published by Epic Games. The game was released as a paid-for early access title for Microsoft Windows, macOS, PlayStation 4 and Xbox One on July 25, 2017, with a full free-to-play release expected in...
Teradek T-RAX 7.3.2 (snapshot.cgi) Stream Disclosure
Summary T-RAX is a high-density enterprise-grade H.264 platform that encodes, decodes, and streams video at broadcast quality. Description T-RAX suffers from an unauthenticated and unauthorized live stream disclosure when snapshot.cgi script is called. Teradek T-RAX 7.3.2 snapshot.cgi Stream...
KYOCERA Net Admin 3.4 CSRF Add Admin Exploit
Summary KYOCERA Net Admin is Kyocera's unified device management software that uses a web-based platform to give network administrators easy and uncomplicated control to handle a fleet for up to 10,000 devices. Tasks that used to require multiple programs or walking to each printer can now be...
KYOCERA Net Admin 3.4 Multiple XSS Vulnerabilities
Summary KYOCERA Net Admin is Kyocera's unified device management software that uses a web-based platform to give network administrators easy and uncomplicated control to handle a fleet for up to 10,000 devices. Tasks that used to require multiple programs or walking to each printer can now be...
KYOCERA Multi-Set Template Editor 3.4 Out-Of-Band XML External Entity Injection
Summary KYOCERA Net Admin is Kyocera's unified device management software that uses a web-based platform to give network administrators easy and uncomplicated control to handle a fleet for up to 10,000 devices. Tasks that used to require multiple programs or walking to each printer can now be...
SharpLynx v9.2.3 Insecure File Permissions
Summary Back Office Software for Sharp POS Terminals. Catering for the needs of retail and hospitality businesses, SharpLynx has been developed as a modular software solution with options from simple program management and sales analysis through to multi-location stock control. Description...
VideoFlow Digital Video Protection DVP 10 Authenticated Root Remote Code Execution
Summary VideoFlow's Digital Video Protection DVP product is used by leading companies worldwide to boost the reliability of IP networks, including the public Internet, for professional live broadcast. DVP enables broadcast companies to confidently contribute and distribute live video over IP with...
VideoFlow Digital Video Protection DVP 10 Authenticated Directory Traversal
Summary VideoFlow's Digital Video Protection DVP product is used by leading companies worldwide to boost the reliability of IP networks, including the public Internet, for professional live broadcast. DVP enables broadcast companies to confidently contribute and distribute live video over IP with...
Prisma Industriale Checkweigher PrismaWEB 1.21 Authentication Bypass
Summary Web Administration of Machine. Description The vulnerability exists due to the disclosure of hard-coded credentials allowing an attacker to effectively bypass authentication of PrismaWEB with administrator privileges. The credentials can be disclosed by simply navigating to the loginpar.j...
LogicalDOC Enterprise 7.7.4 Post-Auth Command Execution Via Binary Path Manipulation
Summary LogicalDOC is a free document management system that is designed to handle and share documents within an organization. LogicalDOC is a content repository, with Lucene indexing, Activiti workflow, and a set of automatic import procedures. Description LogicalDOC suffers from multiple...
LogicalDOC Enterprise 7.7.4 Multiple Directory Traversal Vulnerabilities
Summary LogicalDOC is a free document management system that is designed to handle and share documents within an organization. LogicalDOC is a content repository, with Lucene indexing, Activiti workflow, and a set of automatic import procedures. Description The application suffers from multiple...
LogicalDOC Enterprise 7.7.4 Reflected Cross-Site Scripting Vulnerabilities
Summary LogicalDOC is a free document management system that is designed to handle and share documents within an organization. LogicalDOC is a content repository, with Lucene indexing, Activiti workflow, and a set of automatic import procedures. Description LogicalDOC suffers from multiple...
LogicalDOC Enterprise 7.7.4 Username Enumeration Weakness
Summary LogicalDOC is a free document management system that is designed to handle and share documents within an organization. LogicalDOC is a content repository, with Lucene indexing, Activiti workflow, and a set of automatic import procedures. Description The weakness is caused due to the...
NEC Univerge SV9100/SV8100 WebPro 10.0 Remote Configuration Download
Summary NEC's UNIVERGE® SV9100 is the unified communications UC solution of choice for small and medium businesses SMBs who don't want to be left behind. Designed to fit your unique needs, the UNIVERGE SV9100 platform is a powerful communications solution that provides SMBs with the efficient,...
Telesquare SKT LTE Router SDT-CS3B1 Insecure Direct Object Reference Info Leak
Summary We introduce SDT-CS3B1 LTE router which is a SKT 3G and 4G LTE wireless communication based LTE router product. Description Insecure direct object references occur when an application provides direct access to objects based on user-supplied input. As a result of this vulnerability attacke...
Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities
Summary Easy!Appointments is a highly customizable web application that allows your customers to book appointments with you via the web. Moreover, it provides the ability to sync your data with Google Calendar so you can use them with other services. It is an open source project and you can...
Telesquare SKT LTE Router SDT-CS3B1 WebDAV HTTP Methods Arbitrary File Events
Summary We introduce SDT-CS3B1 LTE router which is a SKT 3G and 4G LTE wireless communication based LTE router product. Description WebDAV is enabled with directory listing and dangerous HTTP methods allowed: PROPFIND, DELETE, MKCOL, PUT, MOVE, COPY, PROPPATCH, LOCK and UNLOCK. The HTTP PUT metho...
Xerox DC260 EFI Fiery Controller Webtools 2.0 Arbitrary File Disclosure
Summary Drive production profitability with Fiery servers and workflow products. See which Fiery digital front end is right for your current or future print engines and business needs. Manage all your printers from a single screen using this intuitive print job management interface. Description...