← Back

Tiandy

tiandy

3 CVEs • 5 products

Products (5)

Click to collapse
Toggle
Tiandy Ip Camera Firmware
tiandy_ip_camera_firmware
1 CVE
Video Surveillance System Firmware
video_surveillance_system_firmware
1 CVE
Easy7 Cms
easy7_cms
1 CVE
Tiandy Ip Camera
tiandy_ip_camera
0 CVEs
Video Surveillance System
video_surveillance_system
0 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2026-3818
1Tiandy
1Easy7 Cms
Apr 29, 2026
Mar 9, 2026
5.5 MEDIUM· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A flaw has been found in Tiandy Easy7 CMS Windows 7.17.0. Impacted is an unknown function of the file /Easy7/apps/WebService/GetDBData.jsp. This manipulation of the argument strTBName causes sql injection. The attack may...Show more
A flaw has been found in Tiandy Easy7 CMS Windows 7.17.0. Impacted is an unknown function of the file /Easy7/apps/WebService/GetDBData.jsp. This manipulation of the argument strTBName causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2026-3797
1Tiandy
1Video Surveillance System Firmware
Apr 29, 2026
Mar 9, 2026
2.1 LOW· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The impacted element is the function uploadFile of the file /src/com/tiandy/easy7/core/rest/CLS_REST_File.java. The manipulati...Show more
A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The impacted element is the function uploadFile of the file /src/com/tiandy/easy7/core/rest/CLS_REST_File.java. The manipulation of the argument fileName leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2017-15236
1Tiandy
1Tiandy Ip Camera Firmware
May 13, 2026
Oct 11, 2017
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Tiandy IP cameras 5.56.17.120 do not properly restrict a certain proprietary protocol, which allows remote attackers to read settings via a crafted request to TCP port 3001, as demonstrated by config* files and extendwor...Show more
Tiandy IP cameras 5.56.17.120 do not properly restrict a certain proprietary protocol, which allows remote attackers to read settings via a crafted request to TCP port 3001, as demonstrated by config* files and extendword.txt.Show less