Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ip security camera firmware vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2013-1605
Buffer overflow in MayGion IP Cameras with firmware prior to 2013.04.22 (05.53) allows remote malicious users to execute arbitrary code via a long filename in a GET request.
Maygion Ip Camera Firmware 05.53
Maygion Ip Camera Firmware 05.49
Maygion Ip Camera Firmware 05.60
Maygion Ip Camera Firmware 05.59
Maygion Ip Camera Firmware
Maygion Ip Camera Firmware 6.2
Maygion Ip Camera Firmware 6.1
Maygion Ip Camera Firmware 6.0
1 EDB exploit
5
CVSSv2
CVE-2013-1604
Directory traversal vulnerability in MayGion IP Cameras with firmware prior to 2013.04.22 (05.53) allows remote malicious users to read arbitrary files via a .. (dot dot) in the default URI.
Maygion Ip Camera Firmware
Maygion Ip Camera Firmware 05.49
Maygion Ip Camera Firmware 05.59
Maygion Ip Camera Firmware 05.53
Maygion Ip Camera Firmware 6.2
Maygion Ip Camera Firmware 6.1
Maygion Ip Camera Firmware 6.0
Maygion Ip Camera Firmware 05.60
1 EDB exploit
10
CVSSv2
CVE-2014-1849
Foscam IP camera 11.37.2.49 and other versions, when using the Foscam DynDNS option, generates credentials based on predictable camera subdomain names, which allows remote malicious users to spoof or hijack arbitrary cameras and conduct other attacks by modifying arbitrary camera...
Foscam Ip Camera Firmware 11.37.2.49
1 EDB exploit
4.3
CVSSv2
CVE-2014-0673
Multiple cross-site scripting (XSS) vulnerabilities in the web interface on Cisco Video Surveillance 5000 HD IP Dome cameras allow remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCud10943 and CSCud10950.
Cisco Video Surveillance Indoor Fixed Dome Ip Hd Camera 5010
Cisco Video Surveillance Indoor Fixed Dome Ip Hd Camera 5011
6.1
CVSSv2
CVE-2021-34734
A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for the Cisco Video Surveillance 7000 Series IP Cameras firmware could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition. This vulnerability is due to improper ...
Cisco Video Surveillance 7000 Ip Camera Firmware 2.12.4
8.3
CVSSv2
CVE-2020-3110
A vulnerability in the Cisco Discovery Protocol implementation for the Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent malicious user to execute code remotely or cause a reload of an affected IP Camera. The vulnerability is due to missing ...
Cisco Video Surveillance 8400 Ip Camera Firmware
Cisco Video Surveillance 8030 Ip Camera Firmware
Cisco Video Surveillance 8020 Ip Camera Firmware
Cisco Video Surveillance 8000p Ip Camera Firmware
Cisco Video Surveillance 8930 Speed Dome Ip Camera Firmware
Cisco Video Surveillance 8630 Ip Camera Firmware
Cisco Video Surveillance 8070 Ip Camera Firmware
Cisco Video Surveillance 8620 Ip Camera Firmware
5
CVSSv2
CVE-2013-2569
A Security Bypass vulnerability exists in Zavio IP Cameras up to and including 1.6.3 because the RTSP protocol authentication is disabled by default, which could let a malicious user obtain unauthorized access to the live video stream.
Zavio F3105 Firmware
Zavio F312a Firmware
1 EDB exploit
10
CVSSv2
CVE-2013-2568
A Command Injection vulnerability exists in Zavio IP Cameras up to and including 1.6.3 via the ap parameter to /cgi-bin/mft/wireless_mft.cgi, which could let a remote malicious user execute arbitrary code.
Zavio F3105 Firmware
Zavio F312a Firmware
1 EDB exploit
5
CVSSv2
CVE-2013-2567
An Authentication Bypass vulnerability exists in the web interface in Zavio IP Cameras up to and including 1.6.03 due to a hardcoded admin account found in boa.conf, which lets a remote malicious user obtain sensitive information.
Zavio F3105 Firmware
Zavio F312a Firmware
1 EDB exploit
7.5
CVSSv2
CVE-2013-2570
A Command Injection vulnerability exists in Zavio IP Cameras up to and including 1.6.3 in the General.Time.NTP.Server parameter to the sub_C8C8 function of the binary /opt/cgi/view/param, which could let a remove malicious user execute arbitrary code.
Zavio F3105 Firmware
Zavio F312a Firmware
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »