CVE Tools

microdigital

Hardware Firmwarecommercial

12

Cumulative CVEs

1

Monthly snapshots

#41

Peak rank

Top products

mdc-n2190v firmware12 mdc-n4090 firmware12 mdc-n4090w firmware12

Latest CVEs

The 12 most recently published vulnerabilities affecting microdigital.

CVE-2019-14698An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. In a CGI program running under the HTTPD web server, a buffer overflow in the param parameter leads to rem...9.8Aug 6, 2019
CVE-2019-14699An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can exploit OS Command Injection in the filename parameter for remote code execution as root. ...9.8Aug 6, 2019
CVE-2019-14700An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. There is disclosure of the existence of arbitrary files via Path Traversal in HTTPD. This occurs because t...7.5Aug 6, 2019
CVE-2019-14701An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can trigger read operations on an arbitrary file via Path Traversal in the TZ parameter, but c...7.5Aug 6, 2019
CVE-2019-14702An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. SQL injection vulnerabilities exist in 13 forms that are reachable through HTTPD. An attacker can, for exa...9.8Aug 6, 2019
CVE-2019-14703A CSRF issue was discovered in webparam?user&action=set&param=add in HTTPD on MicroDigital N-series cameras with firmware through 6400.0.8.5 to create an admin account.8.8Aug 6, 2019
CVE-2019-14704An SSRF issue was discovered in HTTPD on MicroDigital N-series cameras with firmware through 6400.0.8.5 via FTP commands following a newline character in the uploadfile field.9.8Aug 6, 2019
CVE-2019-14705An Incorrect Access Control issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5 because any valid cookie can be used to make requests as an admin.7.2Aug 6, 2019
CVE-2019-14706A denial of service issue in HTTPD was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker without authorization can upload a file to upload.php with a filenam...7.5Aug 6, 2019
CVE-2019-14707An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. The firmware update process is insecure, leading to remote code execution. The attacker can provide arbitr...7.2Aug 6, 2019
CVE-2019-14708An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. A buffer overflow in the action parameter leads to remote code execution in the context of the nobody acco...9.8Aug 6, 2019
CVE-2019-14709A cleartext password storage issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. The file in question is /usr/local/ipsca/mipsca.db. If a camera is compromised, ...9.8Aug 6, 2019