Geovision: >> Digital Surveillance System Security Vulnerabilities
Directory traversal vulnerability in geohttpserver in Geovision Digital Video Surveillance System 8.2 allows remote attackers to read arbitrary files via a .. (dot dot) in a GET request.
CVSS Score
5.0
EPSS Score
0.121
Published
2011-09-12
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0, when set to create JPEG images, does not properly protect an image even when a password and username is assigned, which may allow remote attackers to gain sensitive information via a direct request to the image.
CVSS Score
5.0
EPSS Score
0.05
Published
2005-05-14
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0 uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the password via sniffing.
CVSS Score
7.5
EPSS Score
0.005
Published
2005-05-14