Vulnerabilities > Lcnet > Smart Evision
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-28 | CVE-2022-39029 | Incorrect Authorization vulnerability in Lcnet Smart Evision Smart eVision has inadequate authorization for the database query function. | 6.5 |
| 2022-09-28 | CVE-2022-39030 | Incorrect Authorization vulnerability in Lcnet Smart Evision 2022.02.21 smart eVision has inadequate authorization for system information query function. | 7.5 |
| 2022-09-28 | CVE-2022-39031 | Incorrect Authorization vulnerability in Lcnet Smart Evision 2022.02.21 Smart eVision has insufficient authorization for task acquisition function. | 5.3 |
| 2022-09-28 | CVE-2022-39032 | Improper Privilege Management vulnerability in Lcnet Smart Evision 2022.02.21 Smart eVision has an improper privilege management vulnerability. | 8.8 |
| 2022-09-28 | CVE-2022-39033 | Path Traversal vulnerability in Lcnet Smart Evision 2022.02.21 Smart eVision’s file acquisition function has a path traversal vulnerability due to insufficient filtering for special characters in the URL parameter. | 9.8 |
| 2022-09-28 | CVE-2022-39034 | Path Traversal vulnerability in Lcnet Smart Evision 2022.03.21 Smart eVision has a path traversal vulnerability in the Report API function due to insufficient filtering for special characters in URLs. | 6.5 |
| 2022-09-28 | CVE-2022-39035 | Cross-site Scripting vulnerability in Lcnet Smart Evision 2022.02.21 Smart eVision has insufficient filtering for special characters in the POST Data parameter in the specific function. | 6.1 |