Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webcam vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-1170
Buffer overflow in Netsnap webcam HTTP server prior to 1.2.9 allows remote malicious users to execute arbitrary commands via a long GET request.
Pelesoft Netsnap 1.2
5.3
CVSSv3
CVE-2020-10858
Zulip Desktop prior to 5.0.0 allows malicious users to perform recording via the webcam and microphone due to a missing permission request handler.
Zulip Zulip Desktop
9.8
CVSSv3
CVE-2021-30168
The sensitive information of webcam device is not properly protected. Remote attackers can unauthentically grant administrator’s credential and further control the devices.
Meritlilin P2r8852e2 Firmware
Meritlilin P2r8852e4 Firmware
Meritlilin P2r6852e2 Firmware
Meritlilin P2r6852e4 Firmware
Meritlilin P2r6552e2 Firmware
Meritlilin P2r6552e4 Firmware
Meritlilin P2r6352ae2 Firmware
Meritlilin P2r6352ae4 Firmware
Meritlilin P2r3052ae2 Firmware
Meritlilin P2g1052 Firmware
Meritlilin P2r8822e2 Firmware
Meritlilin P2r8822e4 Firmware
Meritlilin P2r6822e2 Firmware
Meritlilin P2r6822e4 Firmware
Meritlilin P2r6522e2 Firmware
Meritlilin P2r6522e4 Firmware
Meritlilin P2r6322ae2 Firmware
Meritlilin P2r6322ae4 Firmware
Meritlilin P2r3022ae2 Firmware
Meritlilin P2g1022 Firmware
Meritlilin P2g1022x Firmware
Meritlilin Z2r8852ax Firmware
6.1
CVSSv3
CVE-2021-34656
The 2Way VideoCalls and Random Chat - HTML5 Webcam Videochat WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the `vws_notice` function found in the ~/inc/requirements.php file which allows malicious users to inject arbitrary web scripts, in versions up to and...
Videowhisper 2way Videocalls And Random Chat
NA
CVE-2014-2715
Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote malicious users to inject arbitrary web script or HTML via the (1) module or (2) message parameter to index.php.
Videowhisper Videowhisper 7.x-1.0
Videowhisper Videowhisper 7.x-1.x
Videowhisper Videowhisper 7.x-1.3
Videowhisper Videowhisper 7.x-1.1
NA
CVE-2022-3475327
Schneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) versions 1.31.460 and below suffer from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the root user via the name GET parameter in delsnap....
5.5
CVSSv3
CVE-2023-1186
A vulnerability has been found in FabulaTech Webcam for Remote Desktop 2.8.42 and classified as problematic. This vulnerability affects the function 0x222010/0x222018 in the library ftwebcam.sys of the component IOCTL Handler. The manipulation leads to null pointer dereference. A...
Fabulatech Webcam For Remote Desktop 2.8.42
5.5
CVSSv3
CVE-2023-1188
A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42. It has been classified as problematic. Affected is the function 0x222018 in the library ftwebcam.sys of the component IoControlCode Handler. The manipulation leads to denial of service. The attack needs to ...
Fabulatech Webcam For Remote Desktop 2.8.42
5.5
CVSSv3
CVE-2023-1187
A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42 and classified as problematic. This issue affects some unknown processing in the library ftwebcam.sys of the component Global Variable Handler. The manipulation leads to denial of service. It is possible to ...
Fabulatech Webcam For Remote Desktop 2.8.42
NA
CVE-2014-1761
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Word Viewer; Office Compatibility Pack SP3; Office for Mac 2011; Word Automation Services on SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allo...
Microsoft Word 2010
Microsoft Word 2003
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2013
Microsoft Word Viewer
Microsoft Word 2013
Microsoft Office Web Apps Server 2013
Microsoft Office 2011
Microsoft Office Compatibility Pack
Microsoft Sharepoint Server 2010
Microsoft Word 2007
1 EDB exploit
1 Github repository
6 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »