Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
camera vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4928
The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information.
Axis 207w Network Camera
NA
CVE-2007-4929
Multiple cross-site scripting (XSS) vulnerabilities in the AXIS 207W camera allow remote malicious users to inject arbitrary web script or HTML via the camNo parameter to incl/image_incl.shtml, and other unspecified vectors.
Axis 207w Network Camera
NA
CVE-2007-4930
Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 207W camera allow remote malicious users to perform certain actions as administrators via (1) axis-cgi/admin/restart.cgi, (2) the user and sgrp parameters to axis-cgi/admin/pwdgrp.cgi in an add action, or (3) ...
Axis 207w Network Camera
3 EDB exploits
9.8
CVSSv3
CVE-2017-11632
An issue exists on Wireless IP Camera 360 devices. A root account with a known SHA-512 password hash exists, which makes it easier for remote malicious users to obtain administrative access via a TELNET session.
- Wireless Ip Camera 360 -
7.5
CVSSv3
CVE-2017-11633
An issue exists on Wireless IP Camera 360 devices. Remote attackers can discover RTSP credentials by connecting to TCP port 9527 and reading the InsertConnect field.
- Wireless Ip Camera 360 -
7.5
CVSSv3
CVE-2017-11635
An issue exists on Wireless IP Camera 360 devices. Attackers can read recordings by navigating to /mnt/idea0 or /mnt/idea1 on the SD memory card.
- Wireless Ip Camera 360 -
9.8
CVSSv3
CVE-2017-11634
An issue exists on Wireless IP Camera 360 devices. Remote attackers can discover a weakly encoded admin password by connecting to TCP port 9527 and reading the password field of the debugging information, e.g., nTBCS19C corresponds to a password of 123456.
- Wireless Ip Camera 360 -
NA
CVE-2013-5215
Cross-site scripting (XSS) vulnerability in the web interface "WiFi scan" option in FOSCAM Wireless IP Cameras allows remote malicious users to inject arbitrary web script or HTML via the SSID.
Foscam Wireless Ip Camera -
NA
CVE-2014-5618
The Cartoon Camera (aka com.fingersoft.cartooncamera) application 1.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Fingersoft Cartoon Camera 1.2.2
7.5
CVSSv3
CVE-2019-12763
The Security Camera CZ application up to and including 1.6.8 for Android stores potentially sensitive recorded video in external data storage, which is readable by any application.
Securitycamera Security Camera Cz
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »