Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Cs\-C6n\-A0\-1c2wfr_firmware
(Ezviz)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 3 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2023-11-28 | CVE-2023-48121 | An authentication bypass vulnerability in the Direct Connection Module in Ezviz CS-C6N-xxx prior to v5.3.x build 20230401, Ezviz CS-CV310-xxx prior to v5.3.x build 20230401, Ezviz CS-C6CN-xxx prior to v5.3.x build 20230401, Ezviz CS-C3N-xxx prior to v5.3.x build 20230401 allows remote attackers to obtain sensitive information by sending crafted messages to the affected devices. | Cs\-C3n\-A0\-3h2wfrl_firmware, Cs\-C6cn\-A0\-3h2wfr_firmware, Cs\-C6n\-A0\-1c2wfr_firmware, Cs\-Cv310\-A0\-1c2wfr_firmware | 5.3 | ||
2022-09-15 | CVE-2022-2471 | Stack-based Buffer Overflow vulnerability in the EZVIZ Motion Detection component as used in camera models CS-CV248, CS-C6N-A0-1C2WFR, CS-DB1C-A0-1E2W2FR, CS-C6N-B0-1G2WF, CS-C3W-A0-3H4WFRL allows a remote attacker to execute remote code on the device. This issue affects: EZVIZ CS-CV248 versions prior to 5.2.3 build 220725. EZVIZ CS-C6N-A0-1C2WFR versions prior to 5.3.0 build 220428. EZVIZ CS-DB1C-A0-1E2W2FR versions prior to 5.3.0 build 220802. EZVIZ CS-C6N-B0-1G2WF versions prior to 5.3.0... | Cs\-C3w\-A0\-3h4wfrl_firmware, Cs\-C6n\-A0\-1c2wfr_firmware, Cs\-C6n\-B0\-1g2wf_firmware, Cs\-Cv248_firmware, Cs\-Db1c\-A0\-1e2w2fr_firmware | 9.8 | ||
2022-09-15 | CVE-2022-2472 | Improper Initialization vulnerability in the local server component of EZVIZ CS-C6N-A0-1C2WFR allows a local attacker to read the contents of the memory space containing the encrypted admin password. This issue affects: EZVIZ CS-C6N-A0-1C2WFR versions prior to 5.3.0 build 220428. | Cs\-C6n\-A0\-1c2wfr_firmware | 5.5 |