Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intercom intercom vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-29206
An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected Products: UniFi Connect EV Station (Version 1.1.18 and previous versions) UniFi Connect EV Station Pro (Vers...
NA
CVE-2024-31680
File Upload vulnerability in Shibang Communications Co., Ltd. IP network intercom broadcasting system v.1.0 allows a local malicious user to execute arbitrary code via the my_parser.php component.
NA
CVE-2024-3218
A vulnerability classified as critical has been found in Shibang Communications IP Network Intercom Broadcasting System 1.0. This affects an unknown part of the file /php/busyscreenshotpush.php. The manipulation of the argument jsondata[callee]/jsondata[imagename] leads to path t...
6.5
CVSSv3
CVE-2023-6894
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK). It has been classified as problematic. This affects an unknown part of the file access/html/system.html of the component Log File Handler. The manipulation leads to information disclo...
Hikvision Intercom Broadcast System
9.8
CVSSv3
CVE-2023-6895
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK). It has been declared as critical. This vulnerability affects unknown code of the file /php/ping.php. The manipulation of the argument jsondata[ip] with the input netstat -ano leads to...
Hikvision Intercom Broadcast System
4 Github repositories
7.5
CVSSv3
CVE-2023-6893
A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK) and classified as problematic. Affected by this issue is some unknown functionality of the file /php/exportrecord.php. The manipulation of the argument downname with the input C:\ICPAS...
Hikvision Intercom Broadcast System
1 Github repository
4.3
CVSSv3
CVE-2023-28810
Some access control/intercom products have unauthorized modification of device network configuration vulnerabilities. Attackers can modify device network configuration by sending specific data packets to the vulnerable interface within the same local network.
Hikvision Ds-k1t804af Firmware
Hikvision Ds-k1t804amf Firmware
Hikvision Ds-k1t341am Firmware
Hikvision Ds-k1t341amf Firmware
Hikvision Ds-k1t671m Firmware
Hikvision Ds-k1t671mf Firmware
Hikvision Ds-k1t671 Firmware
Hikvision Ds-k1t343efwx Firmware
Hikvision Ds-k1t343efx Firmware
Hikvision Ds-k1t343ewx Firmware
Hikvision Ds-k1t343ex Firmware
Hikvision Ds-k1t343mfwx Firmware
Hikvision Ds-k1t343mfx Firmware
Hikvision Ds-k1t343mwx Firmware
Hikvision Ds-k1t343mx Firmware
Hikvision Ds-k1t341c Firmware
Hikvision Ds-k1t320efwx Firmware
Hikvision Ds-k1t320efx Firmware
Hikvision Ds-k1t320ewx Firmware
Hikvision Ds-k1t320ex Firmware
Hikvision Ds-k1t320mfwx Firmware
Hikvision Ds-k1t320mfx Firmware
7.5
CVSSv3
CVE-2019-14365
The Intercom plugin up to and including 1.2.1 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack (channels, members, etc.).
Intercom Intercom
5.9
CVSSv3
CVE-2017-10819
MaLion for Mac 4.3.0 to 5.2.1 does not properly validate certificates, which may allow an malicious user to eavesdrop on an encrypted communication.
Intercom Malion
9.8
CVSSv3
CVE-2017-10818
MaLion for Windows and Mac versions 3.2.1 to 5.2.1 uses a hardcoded cryptographic key which may allow an malicious user to alter the connection settings of Terminal Agent and spoof the Relay Service.
Intercom Malion
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »