Vulnerabilities > Panasonic > Video Insight VMS

DATE CVE VULNERABILITY TITLE RISK
2021-02-05 CVE-2021-20623 Cleartext Transmission of Sensitive Information vulnerability in Panasonic Video Insight VMS 7.3.2.5/7.5
Video Insight VMS versions prior to 7.8 allows a remote attacker to execute arbitrary code with the system user privilege by sending a specially crafted request.
network
low complexity
panasonic CWE-319
critical
9.8
2020-05-20 CVE-2019-5997 Code Injection vulnerability in Panasonic Video Insight VMS 7.3.2.5/7.5
Video Insight VMS versions prior to 7.6.1 allow remote attackers to conduct code injection attacks via unspecified vectors.
network
low complexity
panasonic CWE-94
critical
9.8
2019-09-12 CVE-2019-5996 SQL Injection vulnerability in Panasonic Video Insight VMS 7.3.2.5
SQL injection vulnerability in the Video Insight VMS 7.3.2.5 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
panasonic CWE-89
8.8