← Back

Sv3c

sv3c

10 CVEs • 4 products

Products (4)

Click to collapse
Toggle
H.264 Poe Ip Camera Firmware
h.264_poe_ip_camera_firmware
10 CVEs
Sv B01poe 1080p L
sv-b01poe-1080p-l
0 CVEs
Sv B11vpoe 1080p L
sv-b11vpoe-1080p-l
0 CVEs
Sv D02poe 1080p L
sv-d02poe-1080p-l
0 CVEs

CVEs (10)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-12675
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
6.1 MEDIUM· v3
5.8 MEDIUM· v2
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) does not perform origin checks on URLs that the camera's web interface redirects a user to. This can be leveraged to send a...Show more
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) does not perform origin checks on URLs that the camera's web interface redirects a user to. This can be leveraged to send a user to an unexpected endpoint.Show less
CVE-2018-12674
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
5.7 MEDIUM· v3
2.9 LOW· v2
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) stores the username and password within the cookies of a session. If an attacker gained access to these session cookies, it...Show more
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) stores the username and password within the cookies of a session. If an attacker gained access to these session cookies, it would be possible to gain access to the username and password of the logged-in account.Show less
CVE-2018-12673
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An attacker with remote access to the SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) web interface can disclose information about the camera including camera hardware, wireles...Show more
An attacker with remote access to the SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) web interface can disclose information about the camera including camera hardware, wireless network, and local area network information.Show less
CVE-2018-12672
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B) does not perform proper validation on user-supplied input and is vulnerable to cross-site scripting attacks. If proper authorization was implemented, this vuln...Show more
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B) does not perform proper validation on user-supplied input and is vulnerable to cross-site scripting attacks. If proper authorization was implemented, this vulnerability could be leveraged to perform actions on behalf of another user or the administrator.Show less
CVE-2018-12671
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
An attacker with remote access to the SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) web interface can disclose information about the camera including all password sets set wi...Show more
An attacker with remote access to the SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) web interface can disclose information about the camera including all password sets set within the camera. This information can then be used to gain access to the web interface.Show less
CVE-2018-12670
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B devices allow OS Command Injection.
CVE-2018-12669
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B devices allow remote authenticated users to reset arbitrary accounts via a request to web/cgi-bin/hi3510/param.cgi.
CVE-2018-12668
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B devices have a Hard-coded Password.
CVE-2018-12667
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) is affected by an improper authentication vulnerability that allows requests to be made to back-end CGI scripts without a va...Show more
The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B and V2.3.4.2103-S50-NTD-B20170823B) is affected by an improper authentication vulnerability that allows requests to be made to back-end CGI scripts without a valid session. This vulnerability could be used to read and modify the configuration. The vulnerability affects all versions.Show less
CVE-2018-12666
1Sv3c
1H.264 Poe Ip Camera Firmware
Nov 21, 2024
Oct 19, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B devices improperly identifies users only by the authentication level sent in the cookies, which allow remote attackers to bypass authentication and gain administrato...Show more
SV3C L-SERIES HD CAMERA V2.3.4.2103-S50-NTD-B20170508B devices improperly identifies users only by the authentication level sent in the cookies, which allow remote attackers to bypass authentication and gain administrator access by setting the authLevel cookie to 255.Show less