Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
camera vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2006-3603
Cross-site scripting (XSS) vulnerability in index.php in FlexWATCH Network Camera 3.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the URL.
Seyeon Flexwatch Network Camera 3.0
1 EDB exploit
2.1
CVSSv2
CVE-2021-33119
Improper access control in the Intel(R) RealSense(TM) DCM before version 20210625 may allow an authenticated user to potentially enable information disclosure via local access.
Intel Realsense Depth Camera Manager
NA
CVE-2023-3386
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in a2 Camera Trap Tracking System allows SQL Injection.This issue affects Camera Trap Tracking System: prior to 3.1905.
A2technology Camera Trap Tracking System
10
CVSSv2
CVE-2008-6993
Siemens Gigaset WLAN Camera 1.27 has an insecure default password, which allows remote malicious users to conduct unauthorized activities. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Siemens Gigaset Wlan Camera 1.27
10
CVSSv2
CVE-2014-1849
Foscam IP camera 11.37.2.49 and other versions, when using the Foscam DynDNS option, generates credentials based on predictable camera subdomain names, which allows remote malicious users to spoof or hijack arbitrary cameras and conduct other attacks by modifying arbitrary camera...
Foscam Ip Camera Firmware 11.37.2.49
1 EDB exploit
9.3
CVSSv2
CVE-2008-5260
Heap-based buffer overflow in the CamImage.CamImage.1 ActiveX control in AxisCamControl.ocx in AXIS Camera Control 2.40.0.0 allows remote malicious users to execute arbitrary code via a long image_pan_tilt property value.
Axis Axis Camera Control 2.40.0.0
7.8
CVSSv2
CVE-2013-0139
The Arecont Vision AV1355DN MegaDome camera allows remote malicious users to cause a denial of service (video-capture outage) via a packet to UDP port 69.
Arecont Vision Av1355dn Megadome Camera -
5.4
CVSSv2
CVE-2014-5856
The Selfie Camera -Facial Beauty- (aka com.cfinc.cunpic) application 1.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Communityfactory Selfie Camera -facial Beauty- 1.2.7
5.4
CVSSv2
CVE-2014-5566
The Selfshot - Front Flash Camera (aka com.americos.selfshot) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Americostech Selfshot Front Flash Camera 1.1
5
CVSSv2
CVE-2017-3185
ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC have a web application that uses the GET method to process requests that contain sensitive information such as user account name and password, which can expose that information through the...
Acti Camera Firmware A1d-500-v6.11.31-ac
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »