VYPR

Fd8136 Firmware

by Vivotek

CVEs (4)

  • CVE-2026-30652HigJun 2, 2026
    risk 0.57cvss 8.8epss 0.01

    A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as root on the device.

  • CVE-2026-30650HigJun 2, 2026
    risk 0.57cvss 8.8epss 0.01

    A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as…

  • CVE-2026-35716MedJun 2, 2026
    risk 0.41cvss 6.3epss 0.00

    A stack-based buffer overflow in the motion_privacy.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via an oversized n1 parameter in a POST request to the /cgi-bin/admin/setpm.cgi,…

  • CVE-2026-35717MedJun 2, 2026
    risk 0.41cvss 6.3epss 0.00

    A stack-based buffer overflow in the export_language.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via a crafted POST request to the /cgi-bin/admin/export_language.cgi endpoint. The handler passes…