Vulnerabilities > Vivotek > Ip8160 Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-05-28 CVE-2020-11950 OS Command Injection vulnerability in Vivotek products
VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to upload and execute a script (with resultant execution of OS commands).
network
low complexity
vivotek CWE-78
8.8
2020-05-28 CVE-2020-11949 Unspecified vulnerability in Vivotek products
testserver.cgi of the web service on VIVOTEK Network Cameras before XXXXX-VVTK-2.2002.xx.01x (and before XXXXX-VVTK-0XXXX_Beta2) allows an authenticated user to obtain arbitrary files from a camera's local filesystem.
network
low complexity
vivotek
6.5