Vulnerabilities > Guardzilla > 180 Outdoor Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-31 | CVE-2018-18602 | Use of Insufficiently Random Values vulnerability in Guardzilla products The Cloud API on Guardzilla smart cameras allows user enumeration, with resultant arbitrary camera access and monitoring. | 9.8 |
| 2018-12-31 | CVE-2018-18600 | OS Command Injection vulnerability in Guardzilla 180 Indoor Firmware and 180 Outdoor Firmware The remote upgrade feature in Guardzilla GZ180 devices allow command injection via a crafted new firmware version parameter. | 8.1 |