Vulnerabilities > Icatchinc

DATE CVE VULNERABILITY TITLE RISK
2020-04-15 CVE-2020-10514 Command Injection vulnerability in Icatchinc DVR Firmware
iCatch DVR firmware before 20200103 do not validate function parameter properly, resulting attackers executing arbitrary command.
network
low complexity
icatchinc CWE-77
6.5
2020-04-15 CVE-2020-10513 Incorrect Permission Assignment for Critical Resource vulnerability in Icatchinc DVR Interface
The file management interface of iCatch DVR firmware before 20200103 contains broken access control which allows the attacker to remotely manipulate arbitrary file.
network
low complexity
icatchinc CWE-732
4.0