Vulnerabilities > Vivotek > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-07-10 CVE-2018-14494 OS Command Injection vulnerability in Vivotek Fd8136 Firmware 0301A
Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget.
network
low complexity
vivotek CWE-78
critical
9.8
2017-06-23 CVE-2017-9828 OS Command Injection vulnerability in Vivotek products
'/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable to shell command injection, which allows remote attackers to execute any shell command as root via a crafted HTTP request.
network
low complexity
vivotek CWE-78
critical
9.8