Max CVSS | 9.3 | Min CVSS | 3.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-4926 | 9.3 |
The AXIS 207W camera uses a base64-encoded cleartext username and password for authentication, which allows remote attackers to obtain sensitive information by sniffing the wireless network or by leveraging unspecified other vectors.
|
15-10-2018 - 21:38 | 18-09-2007 - 18:17 | |
CVE-2007-4930 | 4.3 |
Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 207W camera allow remote attackers to perform certain actions as administrators via (1) axis-cgi/admin/restart.cgi, (2) the user and sgrp parameters to axis-cgi/admin/pwdgrp.cgi i
|
15-10-2018 - 21:38 | 18-09-2007 - 18:17 | |
CVE-2007-4928 | 4.9 |
The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information.
|
15-10-2018 - 21:38 | 18-09-2007 - 18:17 | |
CVE-2007-4929 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in the AXIS 207W camera allow remote attackers to inject arbitrary web script or HTML via the camNo parameter to incl/image_incl.shtml, and other unspecified vectors.
|
15-10-2018 - 21:38 | 18-09-2007 - 18:17 | |
CVE-2007-4927 | 3.5 |
axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a denial of service (reboot) via many requests with unique buffer names in the buffername parameter in a start action.
|
15-10-2018 - 21:38 | 18-09-2007 - 18:17 |