NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:o:dw:megapix_firmware:4.2.0.32842:*:*:*:*:*:*:*
CPE Name Search: true

There are 6 matching records.

Displaying matches 1 through 6.

Vuln ID	Summary	CVSS Severity
CVE-2022-34540	Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/vca/license/license_tok.cgi. This vulnerability is exploitable via a crafted POST request. Published: July 19, 2022; 4:15:11 PM -0400	V3.1: 8.8 HIGH V2.0:(not available)
CVE-2022-34539	Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/curltest.cgi. This vulnerability is exploitable via a crafted POST request. Published: July 19, 2022; 4:15:11 PM -0400	V3.1: 8.8 HIGH V2.0:(not available)
CVE-2022-34538	Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/vca/bia/addacph.cgi. This vulnerability is exploitable via a crafted POST request. Published: July 19, 2022; 4:15:11 PM -0400	V3.1: 8.8 HIGH V2.0:(not available)
CVE-2022-34537	Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a cross-site scripting (XSS) vulnerability via the component bia_oneshot.cgi. Published: July 19, 2022; 4:15:11 PM -0400	V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2022-34536	Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows attackers to access the core log file and perform session hijacking via a crafted session token. Published: July 19, 2022; 4:15:11 PM -0400	V3.1: 7.5 HIGH V2.0:(not available)
CVE-2022-34535	Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows unauthenticated attackers to view internal paths and scripts via web files. Published: July 19, 2022; 4:15:11 PM -0400	V3.1: 7.5 HIGH V2.0:(not available)