VIVOTEK FD8177 devices before XXXXXX-VVTK-xx06a allow remote attackers to execute arbitrary code (issue 1 of 2) via the ONVIF interface, (/onvif/device_service).
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HVivotek Camera
HWVivotekwszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
Powiązane podatności
CVE-2024-26548CRITICAL9.8PL ✓ten sam produkt
RCE w Vivotek Network Camera poprzez komponent upload_file.cgi
CVE-2019-10256CRITICAL9.8ten sam produkt
An authentication bypass vulnerability in VIVOTEK IPCam versions prior to 0x13a was found.
CVE-2019-14457CRITICAL9.8ten sam produkt
VIVOTEK IP Camera devices with firmware before 0x20x have a stack-based buffer overflow via a crafted HTTP hea...
CVE-2019-14458HIGH7.5ten sam produkt
VIVOTEK IP Camera devices with firmware before 0x20x allow a denial of service via a crafted HTTP header.
CVE-2018-14769HIGH8.8ten sam produkt
VIVOTEK FD8177 devices before XXXXXX-VVTK-xx06a allow CSRF.