Vulnerabilities > Geutebrueck

DATE CVE VULNERABILITY TITLE RISK
2021-09-13 CVE-2021-33543 Unspecified vulnerability in Geutebrueck products
Multiple camera devices by UDP Technology, Geutebrück and other vendors allow unauthenticated remote access to sensitive files due to default user authentication settings.
network
low complexity
geutebrueck
critical
9.8
2021-09-13 CVE-2021-33545 Out-of-bounds Write vulnerability in Geutebrueck products
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the counter parameter which may allow an attacker to remotely execute arbitrary code.
network
low complexity
geutebrueck CWE-787
7.2
2021-09-13 CVE-2021-33546 Unspecified vulnerability in Geutebrueck products
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the name parameter, which may allow an attacker to remotely execute arbitrary code.
network
low complexity
geutebrueck
7.2
2021-09-13 CVE-2021-33547 Unspecified vulnerability in Geutebrueck products
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the profile parameter which may allow an attacker to remotely execute arbitrary code.
network
low complexity
geutebrueck
7.2
2021-09-13 CVE-2021-33549 Unspecified vulnerability in Geutebrueck products
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the action parameter, which may allow an attacker to remotely execute arbitrary code.
network
low complexity
geutebrueck
7.2
2021-09-13 CVE-2021-33551 Unspecified vulnerability in Geutebrueck products
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
network
low complexity
geutebrueck
7.2
2020-08-14 CVE-2020-16205 OS Command Injection vulnerability in Geutebrueck products
Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5).
network
low complexity
geutebrueck CWE-78
7.2
2020-01-17 CVE-2019-10958 OS Command Injection vulnerability in Geutebrueck products
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to network configuration to supply system commands to the server, leading to remote code execution as root.
network
low complexity
geutebrueck CWE-78
7.2
2020-01-17 CVE-2019-10957 Cross-site Scripting vulnerability in Geutebrueck products
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to event configuration to store malicious code on the server, which could later be triggered by a legitimate user resulting in code execution within the user’s browser.
network
low complexity
geutebrueck CWE-79
4.8
2020-01-17 CVE-2019-10956 OS Command Injection vulnerability in Geutebrueck products
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated user, using a specially crafted URL command, to execute commands as root.
network
low complexity
geutebrueck CWE-78
7.2