RSS   Vulnerabilities for 'Fd8136 firmware'   RSS

2019-07-10
 
CVE-2018-14496

CWE-119
 

 
** DISPUTED ** Vivotek FD8136 devices allow remote memory corruption and remote code execution because of a stack-based buffer overflow, related to sprintf, vlocal_buff_4326, and set_getparam.cgi. NOTE: The vendor has disputed this as a vulnerability and states that the issue does not cause a web server crash or have any other affect on it's performance.

 
 
CVE-2018-14495

CWE-77
 

 
** DISPUTED ** Vivotek FD8136 devices allow Remote Command Injection, aka "another command injection vulnerability in our target device," a different issue than CVE-2018-14494. NOTE: The vendor has disputed this as a vulnerability and states that the issue does not cause a web server crash or have any other affect on it's performance.

 
 
CVE-2018-14494

CWE-77
 

 
** DISPUTED ** Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget. NOTE: the vendor sent a clarification on 2019-09-17 explaining that, although this CVE was first populated in July 2019, it is a historical vulnerability that does not apply to any current or recent Vivotek hardware or firmware.

 

 >>> Vendor: Vivotek 7 Products
Mjpegcontrol
Rtsp mpeg4 sp control
Network camera fd816ba firmware
Network camera ib8369 firmware
Network camera fd8164 firmware
Camera
Fd8136 firmware


Copyright 2024, cxsecurity.com

 

Back to Top