Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
camera vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-11633
An issue exists on Wireless IP Camera 360 devices. Remote attackers can discover RTSP credentials by connecting to TCP port 9527 and reading the InsertConnect field.
- Wireless Ip Camera 360 -
10
CVSSv2
CVE-2017-11634
An issue exists on Wireless IP Camera 360 devices. Remote attackers can discover a weakly encoded admin password by connecting to TCP port 9527 and reading the password field of the debugging information, e.g., nTBCS19C corresponds to a password of 123456.
- Wireless Ip Camera 360 -
5
CVSSv2
CVE-2017-11635
An issue exists on Wireless IP Camera 360 devices. Attackers can read recordings by navigating to /mnt/idea0 or /mnt/idea1 on the SD memory card.
- Wireless Ip Camera 360 -
7.5
CVSSv2
CVE-2006-3604
Directory traversal vulnerability in FlexWATCH Network Camera 3.0 and previous versions allows remote malicious users to bypass access restrictions for (1) admin/aindex.asp or (2) admin/aindex.html via a .. (dot dot) and encoded / (%2f) sequence in the URL.
Seyeon Flexwatch Network Camera
1 EDB exploit
4.3
CVSSv2
CVE-2015-8256
Multiple cross-site scripting (XSS) vulnerabilities in Axis network cameras.
Axis Network Camera Firmware -
1 EDB exploit
9
CVSSv2
CVE-2015-8257
The devtools.sh script in AXIS network cameras allows remote authenticated users to execute arbitrary commands via shell metacharacters in the app parameter to (1) app_license.shtml, (2) app_license_custom.shtml, (3) app_index.shtml, or (4) app_params.shtml.
Axis Network Camera Firmware -
1 EDB exploit
5.4
CVSSv2
CVE-2014-5618
The Cartoon Camera (aka com.fingersoft.cartooncamera) application 1.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Fingersoft Cartoon Camera 1.2.2
NA
CVE-2023-29861
An issue found in FLIR-DVTEL version not specified allows a remote malicious user to execute arbitrary code via a crafted request to the management page of the device.
Flir Dvtel Camera Firmware -
1 Github repository
7.8
CVSSv2
CVE-2018-6479
An issue exists on Netwave IP Camera devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to the / URI.
Seasofsolutions Ip Camera Firmware -
2 Github repositories
5
CVSSv2
CVE-2018-11653
Information disclosure in Netwave IP camera at //etc/RT2870STA.dat (via HTTP on port 8000) allows an unauthenticated malicious user to exfiltrate sensitive information about the network configuration like the network SSID and password.
Seasofsolutions Ip Camera Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »