GCVE - cpe:2.3:o:abus:tvip_11552_firmware:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:abus:tvip_11552_firmware:-:*:*:*:*:*:*:*

part: o version: - update: *

Vendor	Abus (`64b2fece-d5a1-57cc-9f39-0bc94587f97c`)
Product	Tvip 11552 Firmware (`f9f3475e-722e-59bb-a656-43341ac5f045`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-17879`	vulnerable	2026-06-03 14:38:22.160478	Details available An issue was discovered on certain ABUS TVIP cameras. The CGI scripts allow remote attackers to execute code via system() as root. There are several injection points in various scripts. Published: 2023-10-26T00:00:00.000Z Updated: 2024-08-05T11:01:14.470Z Open on db.gcve.eu Reference links https://www.ccc.de/en/updates/2019/update-nicht-verfugbar-hersteller-nicht-zu-erreichen https://sec.maride.cc/posts/abus/#cve-2018-17879	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-17878`	vulnerable	2026-06-03 14:38:22.157359	Details available Buffer Overflow vulnerability in certain ABUS TVIP cameras allows attackers to gain control of the program via crafted string sent to sprintf() function. Published: 2023-10-26T00:00:00.000Z Updated: 2024-08-05T11:01:14.503Z Open on db.gcve.eu Reference links https://www.ccc.de/en/updates/2019/update-nicht-verfugbar-hersteller-nicht-zu-erreichen https://sec.maride.cc/posts/abus/#cve-2018-17878	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-17559`	vulnerable	2026-06-03 14:38:21.898272	Details available Due to incorrect access control, unauthenticated remote attackers can view the /video.mjpg video stream of certain ABUS TVIP cameras. Published: 2023-10-26T00:00:00.000Z Updated: 2024-09-11T14:27:23.176Z Open on db.gcve.eu Reference links https://www.ccc.de/en/updates/2019/update-nicht-verfugbar-hersteller-nicht-zu-erreichen https://sec.maride.cc/posts/abus/#cve-2018-17559	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-17558`	vulnerable	2026-06-03 14:38:21.895003	Details available Hardcoded manufacturer credentials and an OS command injection vulnerability in the /cgi-bin/mft/ directory on ABUS TVIP TVIP20050 LM.1.6.18, TVIP10051 LM.1.6.18, TVIP11050 MG.1.6.03.05, TVIP20550 LM.1.6.18, TVIP10050 LM.1.6.18, TVIP11550 MG.1.6.03, TVIP21050 MG.1.6.03, and TVIP51550 MG.1.6.03 cameras allow remote attackers to execute code as root. Published: 2023-10-26T00:00:00.000Z Updated: 2024-09-11T19:29:40.804Z Open on db.gcve.eu Reference links https://sec.maride.cc/posts/abus/ https://www.ccc.de/en/updates/2019/update-nicht-verfugbar-hersteller-nicht-zu-erreichen	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-16739`	vulnerable	2026-06-03 14:38:20.939297	Details available An issue was discovered on certain ABUS TVIP devices. Due to a path traversal in /opt/cgi/admin/filewrite, an attacker can write to files, and thus execute code arbitrarily with root privileges. Published: 2023-10-26T00:00:00.000Z Updated: 2024-09-11T19:33:34.616Z Open on db.gcve.eu Reference links https://sec.maride.cc/posts/abus/ https://www.ccc.de/en/updates/2019/update-nicht-verfugbar-hersteller-nicht-zu-erreichen	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.