Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dvr vulnerabilities and exploits
(subscribe to this query)
7.7
CVSSv3
CVE-2020-16096
In Gallagher Command Centre versions 8.10 before 8.10.1134(MR4), 8.00 before 8.00.1161(MR5), 7.90 before 7.90.991(MR5), 7.80 before 7.80.960(MR2), 7.70 and previous versions, any operator account has access to all data that would be replicated if the system were to be (or is) att...
Gallagher Command Centre
Gallagher Command Centre 7.80.960
Gallagher Command Centre 7.90.991
Gallagher Command Centre 8.00.1161
Gallagher Command Centre 8.10.1134
9.8
CVSSv3
CVE-2016-20016
MVPower CCTV DVR models, including TV-7104HE 1.8.4 115215B9 and TV7108HE, contain a web shell that is accessible via a /shell URI. A remote unauthenticated attacker can execute arbitrary operating system commands as root. This vulnerability has also been referred to as the "...
Mvpower Tv-7104he Firmware 1.8.4 115215b9
Mvpower Tv7108he Firmware -
NA
CVE-2011-0032
Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current work...
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Vista
Microsoft Windows Media Center Tv Pack
Microsoft Windows Vista
7.5
CVSSv3
CVE-2019-12223
An issue exists in NVR WebViewer on Hanwah Techwin SRN-472s 1.07_190502 devices, and other SRN-x devices prior to 2019-05-03. A system crash and reboot can be achieved by submitting a long username in excess of 117 characters. The username triggers a buffer overflow in the main p...
Hanwha-security Srn-472s Firmware 1.07 190502
Hanwha-security Srn-873s Firmware
Hanwha-security Srn-1673s Firmware
NA
CVE-2007-5456
Microsoft Internet Explorer 7 and previous versions allows remote malicious users to bypass the "File Download - Security Warning" dialog box and download arbitrary .exe files by placing a '?' (question mark) followed by a non-.exe filename after the .exe file...
Microsoft Internet Explorer
NA
CVE-2004-0789
Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and previous versions as used by Posadis, (2) Axis Network products before firmware 3.13, and (3) Men & Mice Suite 2.2x prior to 2.2.3 and 3.5.x prior to 3.5.2, allow remote malicious users to cause a ...
Delegate Delegate 7.8.1
Delegate Delegate 7.8.2
Delegate Delegate 8.9.1
Delegate Delegate 8.9.2
Dnrd Dnrd 1.3
Dnrd Dnrd 1.4
Dnrd Dnrd 2.0
Dnrd Dnrd 2.6
Dnrd Dnrd 2.7
Don Moore Mydns 0.9
Maradns Maradns 0.5.28
Posadis Posadis 0.50.6
Posadis Posadis 0.50.7
Qbik Wingate 3.0
Qbik Wingate 4.0.1
Delegate Delegate 7.7.1
Delegate Delegate 7.8.0
Delegate Delegate 8.5.0
Delegate Delegate 8.9
Dnrd Dnrd 1.1
Dnrd Dnrd 1.2
Dnrd Dnrd 2.4
9.8
CVSSv3
CVE-2015-8286
Zhuhai RaySharp firmware has a hardcoded root password, which makes it easier for remote malicious users to obtain access via a session on TCP port 23 or 9000.
Zhuhai Raysharp Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9