A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The DOWNLOADS section in the web interface of the Control CenterServer (CCS) contains a path traversal vulnerabilitythat could allow an authenticated remote attacker to access and downloadarbitrary files ...
6.5CVSS
6.1AI Score
0.004EPSS
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0), SiNVR/SiVMS Video Server (All versions < V5.0.0). The FTP services of the SiVMS/SiNVR Video Server and the Control Center Server (CCS) maintainlog files that store login credentials in cleartext.In con...
5.3CVSS
5AI Score
0.001EPSS
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center Server (CCS) contains an SQL injectionvulnerability in its XML-based communication protocol as provided by defaulton ports 5444/tcp and 5440/tcp.An authenticated remote attacker could e...
8.8CVSS
8.5AI Score
0.001EPSS
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The web interface of the Control Center Server (CCS) contains areflected Cross-site Scripting (XSS) vulnerabilitythat could allow an unauthenticated remote attacker to steal sensitive dataor execute admin...
6.1CVSS
5.8AI Score
0.002EPSS
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The web interface of the Control Center Server (CCS) containsmultiple stored Cross-site Scripting (XSS) vulnerabilities in several inputfields.This could allow an authenticated remote attacker to inject m...
6.3CVSS
5.8AI Score
0.001EPSS
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center Server (CCS) does not enforce logging ofsecurity-relevant activities in its XML-based communication protocolas provided by default on ports 5444/tcp and 5440/tcp.An authenticated remote...
4.3CVSS
4.3AI Score
0.001EPSS
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The two FTP services (default ports 21/tcp and 5411/tcp) of the SiVMS/SiNVR VideoServer contain a path traversal vulnerabilitythat could allow an authenticated remote attacker to access and downloadarbitrary...
6.8CVSS
6.3AI Score
0.001EPSS
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The streaming service (default port 5410/tcp) of the SiVMS/SiNVR Video Servercontains a path traversal vulnerability, that could allow anunauthenticated remote attacker to access and download arbitrary files...
7.5CVSS
7.4AI Score
0.004EPSS