C-mor

C-mor Video Surveillance

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2024-45179

Exploit
  • EPSS 1.22%
  • Veröffentlicht 09.10.2024 04:15:09
  • Zuletzt bearbeitet 04.09.2025 16:34:49

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to insufficient input validation, the C-MOR web interface is vulnerable to OS command injection attacks. It was found out that different functionality is vulnera...

8.8

CVE-2024-45171

Exploit
  • EPSS 0.46%
  • Veröffentlicht 05.09.2024 16:15:08
  • Zuletzt bearbeitet 04.09.2025 16:35:58

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation, it is possible to upload dangerous files, for instance PHP code, to the C-MOR system. By analyzing the C-MOR web interface, it was found ou...

8.8

CVE-2024-45175

Exploit
  • EPSS 0.66%
  • Veröffentlicht 05.09.2024 16:15:08
  • Zuletzt bearbeitet 04.09.2025 16:35:22

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Sensitive information is stored in cleartext. It was found out that sensitive information, for example login credentials of cameras, is stored in cleartext. Thus, an attacker wit...

6.1

CVE-2024-45176

Exploit
  • EPSS 0.3%
  • Veröffentlicht 05.09.2024 16:15:08
  • Zuletzt bearbeitet 04.09.2025 16:32:36

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper input validation, the C-MOR web interface is vulnerable to reflected cross-site scripting (XSS) attacks. It was found out that different functions are prone to re...

8.8

CVE-2024-45173

Exploit
  • EPSS 0.3%
  • Veröffentlicht 05.09.2024 15:15:16
  • Zuletzt bearbeitet 04.09.2025 16:32:09

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege management concerning sudo privileges, C-MOR is vulnerable to a privilege escalation attack. The Linux user www-data running the C-MOR web interface can...

7.1

CVE-2024-45178

Exploit
  • EPSS 1.67%
  • Veröffentlicht 05.09.2024 15:15:16
  • Zuletzt bearbeitet 04.09.2025 16:14:01

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user input validation, it is possible to download arbitrary files from the C-MOR system via a path traversal attack. It was found out that different functionaliti...

6.8

CVE-2024-45172

Exploit
  • EPSS 0.54%
  • Veröffentlicht 04.09.2024 20:15:09
  • Zuletzt bearbeitet 04.09.2025 16:29:17

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to missing protection mechanisms, the C-MOR web interface is vulnerable to cross-site request forgery (CSRF) attacks. The C-MOR web interface offers no protectio...

5.4

CVE-2024-45177

Exploit
  • EPSS 0.98%
  • Veröffentlicht 04.09.2024 18:15:05
  • Zuletzt bearbeitet 04.09.2025 16:29:36

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to improper input validation, the C-MOR web interface is vulnerable to persistent cross-site scripting (XSS) attacks. It was found out that the camera configurat...

8.1

CVE-2024-45170

Exploit
  • EPSS 0.43%
  • Veröffentlicht 04.09.2024 17:15:14
  • Zuletzt bearbeitet 04.09.2025 16:30:00

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper or missing access control, low privileged users can use administrative functions of the C-MOR web interface. It was found out that different functions are only av...

8.1

CVE-2024-45174

Exploit
  • EPSS 1.09%
  • Veröffentlicht 04.09.2024 17:15:14
  • Zuletzt bearbeitet 04.09.2025 16:29:46

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to improper validation of user-supplied data, different functionalities of the C-MOR web interface are vulnerable to SQL injection attacks. This kind of attack a...