Vivotek Cc8160 vulnerabilities
2 known vulnerabilities affecting vivotek/cc8160.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2024-7440P2CRITICALCVSS 9.8vVVTK-0100d2024-08-03
CVE-2024-7440 [CRITICAL] CWE-77 CVE-2024-7440: ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has been
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has been classified as critical. This affects the function getenv of the file upload_file.cgi. The manipulation of the argument QUERY_STRING leads to command injection. It is possible to initiate the attack remotely. The identifier VDB-273525 was assigned to thi
nvd
CVE-2024-7439P2CRITICALCVSS 9.8vVVTK-0100d2024-08-03
CVE-2024-7439 [CRITICAL] CWE-121 CVE-2024-7439: ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d and classifie
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d and classified as critical. Affected by this issue is the function read of the component httpd. The manipulation of the argument Content-Length leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public
nvd