Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vivotek vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2013-1595
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service.
Vivotek Pt7135 Firmware 0300a
Vivotek Pt7135 Firmware 0400a
1 EDB exploit
9.8
CVSSv3
CVE-2019-10256
An authentication bypass vulnerability in VIVOTEK IPCam versions before 0x13a was found.
Vivotek Camera -
9.8
CVSSv3
CVE-2019-14457
VIVOTEK IP Camera devices with firmware prior to 0x20x have a stack-based buffer overflow via a crafted HTTP header.
Vivotek Camera -
9.8
CVSSv3
CVE-2018-14495
Vivotek FD8136 devices allow Remote Command Injection, aka "another command injection vulnerability in our target device," a different issue than CVE-2018-14494. NOTE: The vendor has disputed this as a vulnerability and states that the issue does not cause a web server ...
Vivotek Fd8136 Firmware 0301a
9.8
CVSSv3
CVE-2018-14496
Vivotek FD8136 devices allow remote memory corruption and remote code execution because of a stack-based buffer overflow, related to sprintf, vlocal_buff_4326, and set_getparam.cgi. NOTE: The vendor has disputed this as a vulnerability and states that the issue does not cause a w...
Vivotek Fd8136 Firmware 0301a
9.8
CVSSv3
CVE-2018-14494
Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget. NOTE: the vendor sent a clarification on 2019-09-17 explaining that, although this CVE was first populated in July 2019, it is a historical vulnerability that does not apply to any current or rece...
Vivotek Fd8136 Firmware 0301a
9.8
CVSSv3
CVE-2017-9828
'/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable to shell command injection, which allows remote malicious users to execute any shell command as root via a crafted HTTP request. This vulnerability is already verifie...
Vivotek Network Camera Ib8369 Firmware Ib8369-vvtk-0102a
Vivotek Network Camera Fd8164 Firmware Fd8164- Vvtk-0200b
Vivotek Network Camera Fd816ba Firmware Fd816ba-vvtk-010101.
8.8
CVSSv3
CVE-2020-11950
VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to upload and execute a script (with resultant execution of OS commands). For example, this affects IT9388-HT devices.
Vivotek Cc9381-hv Firmware
Vivotek Fd9360-h Firmware
Vivotek Fd9368-htv Firmware
Vivotek Fd9380-h Firmware
Vivotek Fd9388-htv Firmware
Vivotek Ib9360-h Firmware
Vivotek Ib9368-ht Firmware
Vivotek Ib9380-h Firmware
Vivotek Ib9388-ht Firmware
Vivotek It9360-h Firmware
Vivotek It9380-h Firmware
Vivotek It9388-ht Firmware
Vivotek Md9560-dh Firmware
Vivotek Md9560-h Firmware
Vivotek Fd9366-hv Firmware
Vivotek Fd9166-hn Firmware
Vivotek Fe9380-hv Firmware
Vivotek Cc8160 Firmware
Vivotek Cc8160\\(hs\\) Firmware
Vivotek Cc8370-hv Firmware
Vivotek Cc8371-hv Firmware
Vivotek Cd8371-hntv Firmware
8.8
CVSSv3
CVE-2013-1598
A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code.
Vivotek Pt7135 Firmware 0300a
Vivotek Pt7135 Firmware 0400a
1 EDB exploit
8.8
CVSSv3
CVE-2018-14771
VIVOTEK FD8177 devices before XXXXXX-VVTK-xx06a allow remote malicious users to execute arbitrary code (issue 2 of 2) via eventscript.cgi.
Vivotek Camera -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »