Govicture

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-28203 1Govicture 1Rx1800 Firmware Jun 12, 2025 May 9, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Victure RX1800 EN_V1.0.0_r12_110933 was discovered to contain a command injection vulnerability.
CVE-2025-28202 1Govicture 1Rx1800 Firmware Jun 12, 2025 May 9, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Incorrect access control in Victure RX1800 EN_V1.0.0_r12_110933 allows attackers to enable SSH and Telnet services without authentication.
CVE-2025-28201 1Govicture 1Rx1800 Firmware Jun 12, 2025 May 9, 2025 N/A· v4 6.8 MEDIUM· v3 N/A· v2 An issue in Victure RX1800 EN_V1.0.0_r12_110933 allows physically proximate attackers to execute arbitrary code or gain root access.
CVE-2025-28200 1Govicture 1Rx1800 Firmware Jun 12, 2025 May 9, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Victure RX1800 EN_V1.0.0_r12_110933 was discovered to utilize a weak default password which includes the last 8 digits of the Mac address.
CVE-2023-41612 1Govicture 1Pc420 Firmware Apr 14, 2025 Sep 18, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Victure PC420 1.1.39 was discovered to use a weak encryption key for the file enabled_telnet.dat on the Micro SD card.
CVE-2023-41611 1Govicture 1Pc420 Firmware Apr 14, 2025 Sep 18, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Victure PC420 1.1.39 was discovered to use a weak and partially hardcoded key to encrypt data.
CVE-2023-41610 1Govicture 1Pc420 Firmware Apr 14, 2025 Sep 18, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Victure PC420 1.1.39 was discovered to contain a hardcoded root password which is stored in plaintext.
CVE-2021-43284 1Govicture 1Wr1200 Firmware Nov 21, 2024 Nov 30, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets updated from its default value of admin. This enables an attacker to gain control of the device through SSH (regardless of...Show more An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets updated from its default value of admin. This enables an attacker to gain control of the device through SSH (regardless of whether the admin password was changed on the web interface).Show less
CVE-2021-43283 1Govicture 1Wr1200 Firmware Nov 21, 2024 Nov 30, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An issue was discovered on Victure WR1200 devices through 1.0.3. A command injection vulnerability was found within the web interface of the device, allowing an attacker with valid credentials to inject arbitrary shell c...Show more An issue was discovered on Victure WR1200 devices through 1.0.3. A command injection vulnerability was found within the web interface of the device, allowing an attacker with valid credentials to inject arbitrary shell commands to be executed by the device with root privileges. This occurs in the ping and traceroute features. An attacker would thus be able to use this vulnerability to open a reverse shell on the device with root privileges.Show less
CVE-2021-43282 1Govicture 1Wr1200 Firmware Nov 21, 2024 Nov 30, 2021 N/A· v4 6.5 MEDIUM· v3 3.3 LOW· v2 An issue was discovered on Victure WR1200 devices through 1.0.3. The default Wi-Fi WPA2 key is advertised to anyone within Wi-Fi range through the router's MAC address. The device default Wi-Fi password corresponds to th...Show more An issue was discovered on Victure WR1200 devices through 1.0.3. The default Wi-Fi WPA2 key is advertised to anyone within Wi-Fi range through the router's MAC address. The device default Wi-Fi password corresponds to the last 4 bytes of the MAC address of its 2.4 GHz network interface controller (NIC). An attacker within scanning range of the Wi-Fi network can thus scan for Wi-Fi networks to obtain the default key.Show less
CVE-2020-15744 1Govicture 1Pc420 Firmware Nov 21, 2024 Aug 30, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Stack-based Buffer Overflow vulnerability in the ONVIF server component of Victure PC420 smart camera allows an attacker to execute remote code on the target device. This issue affects: Victure PC420 firmware version 1.2...Show more Stack-based Buffer Overflow vulnerability in the ONVIF server component of Victure PC420 smart camera allows an attacker to execute remote code on the target device. This issue affects: Victure PC420 firmware version 1.2.2 and prior versions.Show less
CVE-2019-15940 1Govicture 1Pc530 Firmware Nov 21, 2024 Oct 1, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Victure PC530 devices allow unauthenticated TELNET access as root.