Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
camera vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2012-5306
Stack-based buffer overflow in the SelectDirectory method in DcsCliCtrl.dll in Camera Stream Client ActiveX Control, as used in D-Link DCS-5605 PTZ IP Network Camera, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long...
Dlink Dcs-5605 Ptz Ip Network Camera -
Dlink Camera Stream Client Activex Control 1.0.0.4519
1 EDB exploit
1 Github repository
6.4
CVSSv2
CVE-2013-5535
The analytics page on Cisco Video Surveillance 4000 IP cameras has hardcoded credentials, which allows remote malicious users to watch the video feed by leveraging knowledge of the password, aka Bug IDs CSCuj70402 and CSCuj70419.
Cisco Video Surveillance 4500e Ip Camera -
Cisco Video Surveillance 4300e Ip Camera -
Cisco Video Surveillance 4000 Ip Camera -
7.5
CVSSv2
CVE-2019-10256
An authentication bypass vulnerability in VIVOTEK IPCam versions before 0x13a was found.
Vivotek Camera -
7.5
CVSSv2
CVE-2019-14457
VIVOTEK IP Camera devices with firmware prior to 0x20x have a stack-based buffer overflow via a crafted HTTP header.
Vivotek Camera -
7.8
CVSSv2
CVE-2019-14458
VIVOTEK IP Camera devices with firmware prior to 0x20x allow a denial of service via a crafted HTTP header.
Vivotek Camera -
9
CVSSv2
CVE-2018-14770
VIVOTEK FD8177 devices before XXXXXX-VVTK-xx06a allow remote malicious users to execute arbitrary code (issue 1 of 2) via the ONVIF interface, (/onvif/device_service).
Vivotek Camera -
9
CVSSv2
CVE-2018-14771
VIVOTEK FD8177 devices before XXXXXX-VVTK-xx06a allow remote malicious users to execute arbitrary code (issue 2 of 2) via eventscript.cgi.
Vivotek Camera -
4.3
CVSSv2
CVE-2018-18244
Cross-site scripting in syslog.html in VIVOTEK Network Camera Series products with firmware 0x06x to 0x08x allows remote malicious users to execute arbitrary JavaScript code via an HTTP Referer Header.
Vivotek Camera -
5
CVSSv2
CVE-2018-18004
Incorrect Access Control in mod_inetd.cgi in VIVOTEK Network Camera Series products with firmware before XXXXXX-VVTK-0X09a allows remote malicious users to enable arbitrary system services via a URL parameter.
Vivotek Camera -
4.3
CVSSv2
CVE-2018-18005
Cross-site scripting in event_script.js in VIVOTEK Network Camera Series products with firmware 0x06x to 0x08x allows remote malicious users to execute arbitrary JavaScript via a URL query string parameter.
Vivotek Camera -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »