Skip to main content

Pr115 204 P Rs Firmware

3 CVEs product

Monthly

CVE-2017-17107 CRITICAL POC Act Now

Zivif PR115-204-P-RS V2.3.4.2103 web cameras contain a hard-coded cat1029 password for the root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Pr115 204 P Rs Firmware
NVD
CVSS 3.0
9.8
EPSS
3.8%
CVE-2017-17106 CRITICAL POC THREAT Emergency

Credentials for Zivif PR115-204-P-RS V2.3.4.2103 Webcams can be obtained by an unauthenticated remote attacker using a standard web /cgi-bin/hi3510/param.cgi?cmd=getuser HTTP request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 25.1%.

Information Disclosure Pr115 204 P Rs Firmware
NVD
CVSS 3.0
9.8
EPSS
25.1%
Threat
4.2
CVE-2017-17105 CRITICAL POC THREAT Emergency

Zivif PR115-204-P-RS V2.3.4.2103 and V4.7.4.2121 (and possibly in-between versions) web cameras are vulnerable to unauthenticated, blind remote command injection via CGI scripts used as part of the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 84.8%.

Command Injection Pr115 204 P Rs Firmware
NVD
CVSS 3.0
9.8
EPSS
84.8%
Threat
6.0
EPSS 4% CVSS 9.8
CRITICAL POC Act Now

Zivif PR115-204-P-RS V2.3.4.2103 web cameras contain a hard-coded cat1029 password for the root user. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Pr115 204 P Rs Firmware
NVD
EPSS 25% 4.2 CVSS 9.8
CRITICAL POC THREAT Emergency

Credentials for Zivif PR115-204-P-RS V2.3.4.2103 Webcams can be obtained by an unauthenticated remote attacker using a standard web /cgi-bin/hi3510/param.cgi?cmd=getuser HTTP request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 25.1%.

Information Disclosure Pr115 204 P Rs Firmware
NVD
EPSS 85% 6.0 CVSS 9.8
CRITICAL POC THREAT Emergency

Zivif PR115-204-P-RS V2.3.4.2103 and V4.7.4.2121 (and possibly in-between versions) web cameras are vulnerable to unauthenticated, blind remote command injection via CGI scripts used as part of the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 84.8%.

Command Injection Pr115 204 P Rs Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy