Vendor

TrivisionSecurity

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-1739	TrivisionSecurity NC227WF	Hig	0.46	7.1	0.00		Feb 27, 2025	An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity. This vulnerability allows an attacker to retrieve administrator's credentials in cleartext by sending a request against the server using curl with random credentials to "/en/player/activex_pal.asp" and successfully authenticating the application.
CVE-2025-1738	TrivisionSecurity NC227WF	Med	0.40	6.2	0.00		Feb 27, 2025	A Password Transmitted over Query String vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity, exposing this sensitive information to a third party.

CVE-2025-1739HigFeb 27, 2025
TrivisionSecurity
NC227WF
risk 0.46cvss 7.1epss 0.00
An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity. This vulnerability allows an attacker to retrieve administrator's credentials in cleartext by sending a request against the server using curl with random credentials to "/en/player/activex_pal.asp" and successfully authenticating the application.
CVE-2025-1738MedFeb 27, 2025
TrivisionSecurity
NC227WF
risk 0.40cvss 6.2epss 0.00
A Password Transmitted over Query String vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity, exposing this sensitive information to a third party.