Keniver

**Name of the Vulnerable Software and Affected Versions** IP camera device (affected versions not specified) **Description** The issue concerns the NTP Server configuration function of the IP camera device, which does not properly verify special parameters. This allows remote attackers to perform a command injection attack, enabling them to execute arbitrary commands after logging in with privileged permission. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned. **Description** The sensitive information of a webcam device is not properly protected, allowing remote attackers to grant administrator credentials without authentication and further control the devices. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned. **Description** The sensitive information of a webcam device is not properly protected, allowing remote attackers to unauthentically grant a user's credential. This issue enables unauthorized access to sensitive information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Openfind Mail2000 versions 6.0 through 7.0 **Description** An issue was discovered in Openfind Mail2000 Webmail, where XSS can occur via an '<object data="data:text/html' substring in an e-mail message. **Recommendations** For Openfind Mail2000 versions 6.0 through 7.0, update to a patched version to resolve the issue.