Vulnerabilities > Vivotek > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-08-03 CVE-2024-7443 Command Injection vulnerability in Vivotek Ib8367A Firmware
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in Vivotek IB8367A VVTK-0100b.
network
low complexity
vivotek CWE-77
critical
 9.8
9.8
2024-08-03 CVE-2024-7441 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Vivotek Sd9364 Firmware
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek SD9364 VVTK-0103f.
network
low complexity
vivotek CWE-119
critical
 9.8
9.8
2024-08-03 CVE-2024-7442 Command Injection vulnerability in Vivotek Sd9364 Firmware
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek SD9364 VVTK-0103f.
network
low complexity
vivotek CWE-77
critical
 9.8
9.8
2024-08-03 CVE-2024-7440 Command Injection vulnerability in Vivotek Cc8160 Firmware
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d.
network
low complexity
vivotek CWE-77
critical
 9.8
9.8
2024-08-03 CVE-2024-7439 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Vivotek Cc8160 Firmware
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d and classified as critical.
network
low complexity
vivotek CWE-119
critical
 9.8
9.8
2020-01-24 CVE-2013-1595 Classic Buffer Overflow vulnerability in Vivotek Pt7135 Firmware 0300A/0400A
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service.
network
low complexity
vivotek CWE-120
critical
 9.8
9.8
2019-09-10 CVE-2019-10256 Unspecified vulnerability in Vivotek Camera
An authentication bypass vulnerability in VIVOTEK IPCam versions prior to 0x13a was found.
network
low complexity
vivotek
critical
 9.8
9.8
2019-09-10 CVE-2019-14457 Out-of-bounds Write vulnerability in Vivotek Camera
VIVOTEK IP Camera devices with firmware before 0x20x have a stack-based buffer overflow via a crafted HTTP header.
network
low complexity
vivotek CWE-787
critical
 9.8
9.8
2019-07-10 CVE-2018-14496 Out-of-bounds Write vulnerability in Vivotek Fd8136 Firmware 0301A
Vivotek FD8136 devices allow remote memory corruption and remote code execution because of a stack-based buffer overflow, related to sprintf, vlocal_buff_4326, and set_getparam.cgi.
network
low complexity
vivotek CWE-787
critical
 9.8
9.8
2019-07-10 CVE-2018-14495 OS Command Injection vulnerability in Vivotek Fd8136 Firmware 0301A
Vivotek FD8136 devices allow Remote Command Injection, aka "another command injection vulnerability in our target device," a different issue than CVE-2018-14494.
network
low complexity
vivotek CWE-78
critical
 9.8
9.8