Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Zavio Subscribe
Filtered by product F3105
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-2567 1 Zavio 4 F3105, F3105 Firmware, F312a and 1 more 2020-02-01 5.0 MEDIUM 7.5 HIGH
An Authentication Bypass vulnerability exists in the web interface in Zavio IP Cameras through 1.6.03 due to a hardcoded admin account found in boa.conf, which lets a remote malicious user obtain sensitive information.
CVE-2013-2568 1 Zavio 4 F3105, F3105 Firmware, F312a and 1 more 2020-02-01 10.0 HIGH 9.8 CRITICAL
A Command Injection vulnerability exists in Zavio IP Cameras through 1.6.3 via the ap parameter to /cgi-bin/mft/wireless_mft.cgi, which could let a remote malicious user execute arbitrary code.
CVE-2013-2569 1 Zavio 4 F3105, F3105 Firmware, F312a and 1 more 2020-02-01 5.0 MEDIUM 7.5 HIGH
A Security Bypass vulnerability exists in Zavio IP Cameras through 1.6.3 because the RTSP protocol authentication is disabled by default, which could let a malicious user obtain unauthorized access to the live video stream.
CVE-2013-2570 1 Zavio 4 F3105, F3105 Firmware, F312a and 1 more 2020-02-01 7.5 HIGH 9.8 CRITICAL
A Command Injection vulnerability exists in Zavio IP Cameras through 1.6.3 in the General.Time.NTP.Server parameter to the sub_C8C8 function of the binary /opt/cgi/view/param, which could let a remove malicious user execute arbitrary code.