VYPR
Vendor

Uniview

Products
6
CVEs
6
Across products
8
Status
Private

Products

6

Recent CVEs

6
  • CVE-2021-45039CriMay 31, 2023
    risk 0.64cvss 9.8epss 0.04

    Multiple models of the Uniview IP Camera (e.g., IPC_G6103 B6103.16.10.B25.201218, IPC_G61, IPC21, IPC23, IPC32, IPC36, IPC62, and IPC_HCMN) offer an undocumented UDP service on port 7788 that allows a remote unauthenticated attacker to overflow an internal buffer and achieve…

  • CVE-2020-21452CriApr 29, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in uniview ISC2500-S. This is an upload vulnerability where an attacker can upload malicious code via /Interface/DevManage/EC.php?cmd=upload

  • CVE-2023-0773CriSep 19, 2023
    risk 0.59cvss 9.1epss 0.01

    The vulnerability exists in Uniview IP Camera due to identification and authentication failure at its web-based management interface. A remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable device. Successful exploitation…

  • CVE-2024-0778HigJan 22, 2024
    risk 0.55cvss 8.0epss 0.32

    ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found in Uniview ISC 2500-S up to 20210930. Affected by this issue is the function setNatConfig of the file /Interface/DevManage/VM.php. The manipulation of the argument…

  • CVE-2018-14923HigAug 3, 2018
    risk 0.51cvss 7.8epss 0.01

    A vulnerability in uniview EZPlayer 1.0.6 could allow an attacker to execute arbitrary code on a targeted system via video playback.

  • CVE-2024-3850Jun 10, 2024
    risk 0.01cvss epss 0.01

    Uniview NVR301-04S2-P4 is vulnerable to reflected cross-site scripting attack (XSS). An attacker could send a user a URL that if clicked on could execute malicious JavaScript in their browser. This vulnerability also requires authentication before it can be exploited, so the…