Megapix Firmware Security Vulnerabilities and Issues — Megapix Firmware CVE List

Lucene search

DwMegapix Firmware

6 matches found

CVE•added 2022/07/19 8:15 p.m.•153 views

CVE-2022-34538

Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/vca/bia/addacph.cgi. This vulnerability is exploitable via a crafted POST request.

8.8CVSS9.1AI score0.00545EPSS

CVE•added 2022/07/19 8:15 p.m.•64 views

CVE-2022-34535

Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows unauthenticated attackers to view internal paths and scripts via web files.

7.5CVSS7.5AI score0.00586EPSS

CVE•added 2022/07/19 8:15 p.m.•49 views

CVE-2022-34540

Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/vca/license/license_tok.cgi. This vulnerability is exploitable via a crafted POST request.

8.8CVSS8.7AI score0.01508EPSS

CVE•added 2022/07/19 8:15 p.m.•48 views

CVE-2022-34536

Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows attackers to access the core log file and perform session hijacking via a crafted session token.

7.5CVSS7.4AI score0.00265EPSS

CVE•added 2022/07/19 8:15 p.m.•45 views

CVE-2022-34537

Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a cross-site scripting (XSS) vulnerability via the component bia_oneshot.cgi.

5.4CVSS5.3AI score0.00213EPSS

CVE•added 2022/07/19 8:15 p.m.•43 views

CVE-2022-34539

Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/curltest.cgi. This vulnerability is exploitable via a crafted POST request.

8.8CVSS8.7AI score0.01508EPSS