Lucene search

Avtech Security Vulnerabilities

cve

CVE-2008-3939

Directory traversal vulnerability in the web interface in AVTECH PageR Enterprise before 5.0.7 allows remote attackers to read arbitrary files via directory traversal sequences in the URI.

6.8AI Score

0.003EPSS

2008-09-05 03:08 PM

cve

CVE-2013-4980

Buffer overflow in the RTSP Packet Handler in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the URI in an RTSP SETUP request.

9.6AI Score

0.056EPSS

2014-03-03 04:55 PM

cve

CVE-2013-4981

Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the Network.SMTP.Receivers paramete...

9.6AI Score

0.056EPSS

2014-03-03 04:55 PM

cve

CVE-2013-4982

AVTECH AVN801 DVR has a security bypass via the administration login captcha

9.8CVSS

9.3AI Score

0.126EPSS

2019-12-27 05:15 PM

134

cve

CVE-2019-13379

On AVTECH Room Alert 3E devices before 2.2.5, an attacker with access to the device's web interface may escalate privileges from an unauthenticated user to administrator by performing a cmd.cgi?action=ResetDefaults&src=RA reset and using the default credentials to get in.

8.8CVSS

8.8AI Score

0.013EPSS

2019-07-07 04:15 PM

cve

CVE-2024-7029

Commands can be injected over the network and executed without authentication.

9.8CVSS

8.8AI Score

0.338EPSS

2024-08-02 03:16 PM

In Wild