Vulnerabilities > Motioneye Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-24	CVE-2022-25568	Insecure Default Initialization of Resource vulnerability in Motioneye Project Motioneye MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to /config/list. network low complexity motioneye-project CWE-1188	7.5
2022-01-31	CVE-2021-44255	Missing Authentication for Critical Function vulnerability in multiple products Authenticated remote code execution in MotionEye <= 0.42.1 and MotioneEyeOS <= 20200606 allows a remote attacker to upload a configuration backup file containing a malicious python pickle file which will execute arbitrary code on the server. network low complexity motioneye-project motioneyeos-project CWE-306	7.2

Vulnerabilities > Motioneye Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Motioneye Project"}]}