CVE-2024-7440
- EPSS 1.1%
- Veröffentlicht 03.08.2024 17:15:49
- Zuletzt bearbeitet 07.08.2024 21:15:41
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has been classified as critical. This affects the function getenv of the file upload_file.cgi. The manipulation of the argument QUERY_STRING leads to command i...
CVE-2024-7439
- EPSS 0.2%
- Veröffentlicht 03.08.2024 16:15:49
- Zuletzt bearbeitet 06.08.2024 17:46:40
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d and classified as critical. Affected by this issue is the function read of the component httpd. The manipulation of the argument Content-Length leads to stack-base...
CVE-2020-11949
- EPSS 0.33%
- Veröffentlicht 28.05.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:58:57
testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's local filesystem. For example, this affects IT9388...
- EPSS 1.47%
- Veröffentlicht 28.05.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:58:58
VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to upload and execute a script (with resultant execution of OS commands). For example, this affects IT9388-HT devices.