IP Camera
by Vstarcam
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-10661 | Cri | 0.74 | 9.8 | 0.87 | Jun 26, 2018 | An issue was discovered in multiple models of Axis IP Cameras. There is a bypass of access control. | ||
| CVE-2018-10662 | Cri | 0.73 | 9.8 | 0.80 | Jun 26, 2018 | An issue was discovered in multiple models of Axis IP Cameras. There is an Exposed Insecure Interface. | ||
| CVE-2018-11653 | Cri | 0.64 | 9.8 | 0.02 | Aug 24, 2018 | Information disclosure in Netwave IP camera at //etc/RT2870STA.dat (via HTTP on port 8000) allows an unauthenticated attacker to exfiltrate sensitive information about the network configuration like the network SSID and password. | ||
| CVE-2018-11654 | Hig | 0.49 | 7.5 | 0.02 | Aug 24, 2018 | Information disclosure in Netwave IP camera at get_status.cgi (via HTTP on port 8000) allows an unauthenticated attacker to exfiltrate sensitive information from the device. | ||
| CVE-2023-39509 | 0.00 | — | 0.01 | Dec 18, 2023 | A command injection vulnerability exists in Bosch IP cameras that allows an authenticated user with administrative rights to run arbitrary commands on the OS of the camera. | |||
| CVE-2019-10958 | 0.00 | — | 0.03 | Jan 17, 2020 | Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to network configuration to supply system commands to the server, leading to remote code execution as root. |
- risk 0.74cvss 9.8epss 0.87
An issue was discovered in multiple models of Axis IP Cameras. There is a bypass of access control.
- risk 0.73cvss 9.8epss 0.80
An issue was discovered in multiple models of Axis IP Cameras. There is an Exposed Insecure Interface.
- risk 0.64cvss 9.8epss 0.02
Information disclosure in Netwave IP camera at //etc/RT2870STA.dat (via HTTP on port 8000) allows an unauthenticated attacker to exfiltrate sensitive information about the network configuration like the network SSID and password.
- risk 0.49cvss 7.5epss 0.02
Information disclosure in Netwave IP camera at get_status.cgi (via HTTP on port 8000) allows an unauthenticated attacker to exfiltrate sensitive information from the device.
- CVE-2023-39509Dec 18, 2023risk 0.00cvss —epss 0.01
A command injection vulnerability exists in Bosch IP cameras that allows an authenticated user with administrative rights to run arbitrary commands on the OS of the camera.
- CVE-2019-10958Jan 17, 2020risk 0.00cvss —epss 0.03
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to network configuration to supply system commands to the server, leading to remote code execution as root.