|
248431
|
8.8 |
HIGH
Network
|
dlink
|
dcs-1130_firmware
|
An issue was discovered on D-Link DCS-1130 devices. The device provides a crossdomain.xml file with no restrictions on who can access the webserver. This allows an hosted flash file on any domain to …
|
CWE-352
Origin Validation Error
|
CVE-2017-8406
|
2024-11-21 12:33 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248432
|
7.5 |
HIGH
Network
|
dlink
|
dcs-1100_firmware
dcs-1130_firmware
|
An issue was discovered on D-Link DCS-1130 and DCS-1100 devices. The binary rtspd in /sbin folder of the device handles all the rtsp connections received by the device. It seems that the binary loads…
|
CWE-287
Improper Authentication
|
CVE-2017-8405
|
2024-11-21 12:33 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248433
|
8.8 |
HIGH
Network
|
dlink
|
dcs-1130_firmware
|
An issue was discovered on D-Link DCS-1130 devices. The device provides a user with the capability of setting a SMB folder for the video clippings recorded by the device. It seems that the POST param…
|
CWE-77
Command Injection
|
CVE-2017-8411
|
2024-11-21 12:33 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248434
|
8.8 |
HIGH
Network
|
dlink
|
dcs-1130_firmware
|
An issue was discovered on D-Link DCS-1130 devices. The device provides a user with the capability of changing the administrative password for the web management interface. It seems that the device d…
|
CWE-352
Origin Validation Error
|
CVE-2017-8407
|
2024-11-21 12:33 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248435
|
9.8 |
CRITICAL
Network
|
dlink
|
dcs-1130_firmware
|
An issue was discovered on D-Link DCS-1130 devices. The device provides a user with the capability of setting a SMB folder for the video clippings recorded by the device. It seems that the POST param…
|
CWE-77
Command Injection
|
CVE-2017-8404
|
2024-11-21 12:33 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248436
|
9.8 |
CRITICAL
Network
|
dlink
|
dcs-1130_firmware
|
An issue was discovered on D-Link DCS-1130 devices. The device provides a user with the capability of setting a SMB folder for the video clippings recorded by the device. It seems that the GET parame…
|
CWE-77
Command Injection
|
CVE-2017-8408
|
2024-11-21 12:33 |
2019-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248437
|
8.8 |
HIGH
Network
|
securifi
|
almond_2015_firmware
almond\+firmware
almond_firmware
|
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of executing various actions on the web management i…
|
CWE-200
Information Exposure
|
CVE-2017-8337
|
2024-11-21 12:33 |
2019-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248438
|
8.0 |
HIGH
Network
|
securifi
|
almond_2015_firmware
almond\+firmware
almond_firmware
|
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of blocking IP addresses using the web management in…
|
CWE-352
Origin Validation Error
|
CVE-2017-8334
|
2024-11-21 12:33 |
2019-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248439
|
8.8 |
HIGH
Network
|
securifi
|
almond_2015_firmware
almond\+firmware
almond_firmware
|
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of blocking key words passing in the web traffic to …
|
CWE-79
Cross-site Scripting
|
CVE-2017-8332
|
2024-11-21 12:33 |
2019-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248440
|
6.5 |
MEDIUM
Adjacent
|
securifi
|
almond_2015_firmware
almond\+firmware
almond_firmware
|
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a UPnP functionality for devices to interface with the router and interact with…
|
CWE-20
Improper Input Validation
|
CVE-2017-8330
|
2024-11-21 12:33 |
2019-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
