CVE-2026-35717
- EPSS 0.26%
- Veröffentlicht 02.06.2026 00:00:00
- Zuletzt bearbeitet 05.07.2026 02:17:46
A stack-based buffer overflow in the export_language.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via a crafted POST request to the /cgi-bin/admin/export_language.cgi ...
CVE-2026-30649
- EPSS 0.38%
- Veröffentlicht 02.06.2026 00:00:00
- Zuletzt bearbeitet 05.07.2026 02:17:44
Buffer Overflow vulnerability in VIVOTEK INC FD8136-VVTK-0300a allows a remote attacker to execute arbitrary code via the set_getparam.cgi component
CVE-2026-30650
- EPSS 0.6%
- Veröffentlicht 02.06.2026 00:00:00
- Zuletzt bearbeitet 05.07.2026 02:17:44
A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to ...
CVE-2026-30652
- EPSS 0.52%
- Veröffentlicht 02.06.2026 00:00:00
- Zuletzt bearbeitet 04.07.2026 22:16:42
A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as...
CVE-2026-35716
- EPSS 0.32%
- Veröffentlicht 02.06.2026 00:00:00
- Zuletzt bearbeitet 05.07.2026 02:17:45
A stack-based buffer overflow in the motion_privacy.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via an oversized n1 parameter in a POST request to the /cgi-bin/admin/...
CVE-2026-35718
- EPSS 0.72%
- Veröffentlicht 02.06.2026 00:00:00
- Zuletzt bearbeitet 05.07.2026 02:17:46
A path traversal vulnerability in the /admin/downloadMedias.cgi endpoint of VIVOTEK INC FD8136-VVTK firmware 0300a allows authenticated attackers to read any file on the device via sending a crafted request.