Vulnerabilities > Uniview

DATE CVE VULNERABILITY TITLE RISK
2024-06-10 CVE-2024-3850 Unspecified vulnerability in Uniview Nvr301-04S2-P4 Firmware
Uniview NVR301-04S2-P4 is vulnerable to reflected cross-site scripting attack (XSS).
network
low complexity
uniview
5.4
2024-01-22 CVE-2024-0778 OS Command Injection vulnerability in Uniview ISC 2500-S Firmware 20210930
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has been found in Uniview ISC 2500-S up to 20210930.
network
low complexity
uniview CWE-78
critical
9.8
2023-09-19 CVE-2023-0773 Improper Authentication vulnerability in Uniview Ipc322Lb-Sf28-A Firmware
The vulnerability exists in Uniview IP Camera due to identification and authentication failure at its web-based management interface.
network
low complexity
uniview CWE-287
critical
9.8
2023-05-31 CVE-2021-45039 Classic Buffer Overflow vulnerability in Uniview Camera Firmware
Multiple models of the Uniview IP Camera (e.g., IPC_G6103 B6103.16.10.B25.201218, IPC_G61, IPC21, IPC23, IPC32, IPC36, IPC62, and IPC_HCMN) offer an undocumented UDP service on port 7788 that allows a remote unauthenticated attacker to overflow an internal buffer and achieve code execution.
network
low complexity
uniview CWE-120
critical
9.8
2021-04-29 CVE-2020-21452 Unrestricted Upload of File with Dangerous Type vulnerability in Uniview Isc2500-S Firmware
An issue was discovered in uniview ISC2500-S.
network
low complexity
uniview CWE-434
critical
9.8
2018-08-03 CVE-2018-14923 Improper Input Validation vulnerability in Uniview Ezplayer 1.0.6
A vulnerability in uniview EZPlayer 1.0.6 could allow an attacker to execute arbitrary code on a targeted system via video playback.
local
low complexity
uniview CWE-20
7.8