Siemens Sinvrsivms Video Server
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Siemens Sinvrsivms Video Server.
By the Year
In 2026 there have been 0 vulnerabilities in Siemens Sinvrsivms Video Server. Sinvrsivms Video Server did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 5 | 6.92 |
| 2019 | 2 | 7.65 |
It may take a day or so for new Sinvrsivms Video Server vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Siemens Sinvrsivms Video Server Security Vulnerabilities
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0)
CVE-2019-19299
7.5 - High
- March 10, 2020
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0), SiNVR/SiVMS Video Server (All versions >= V5.0.0 < V5.0.2), SiNVR/SiVMS Video Server (All versions >= V5.0.2). The streaming service (default port 5410/tcp) of the SiVMS/SiNVR Video Server applies weak cryptography when exposing device (camera) passwords. This could allow an unauthenticated remote attacker to read and decrypt the passwords and conduct further attacks.
Inadequate Encryption Strength
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0)
CVE-2019-19298
7.5 - High
- March 10, 2020
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0), SiNVR/SiVMS Video Server (All versions >= V5.0.0 < V5.0.2). The streaming service (default port 5410/tcp) of the SiVMS/SiNVR Video Server contains a input validation vulnerability, that could allow an unauthenticated remote attacker to cause a Denial-of-Service condition by sending malformed HTTP requests.
Improper Input Validation
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0)
CVE-2019-19291
5.3 - Medium
- March 10, 2020
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0), SiNVR/SiVMS Video Server (All versions < V5.0.0). The FTP services of the SiVMS/SiNVR Video Server and the Control Center Server (CCS) maintain log files that store login credentials in cleartext. In configurations where the FTP service is enabled, authenticated remote attackers could extract login credentials of other users of the service.
Cleartext Storage in a File or on Disk
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0)
CVE-2019-19296
6.8 - Medium
- March 10, 2020
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The two FTP services (default ports 21/tcp and 5411/tcp) of the SiVMS/SiNVR Video Server contain a path traversal vulnerability that could allow an authenticated remote attacker to access and download arbitrary files from the server, if the FTP services are enabled.
Directory traversal
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0)
CVE-2019-19297
7.5 - High
- March 10, 2020
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The streaming service (default port 5410/tcp) of the SiVMS/SiNVR Video Server contains a path traversal vulnerability, that could allow an unauthenticated remote attacker to access and download arbitrary files from the server.
Directory traversal
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0)
CVE-2019-18339
9.8 - Critical
- December 12, 2019
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The HTTP service (default port 5401/tcp) of the SiVMS/SiNVR Video Server contains an authentication bypass vulnerability, even when properly configured with enforced authentication. A remote attacker with network access to the Video Server could exploit this vulnerability to read the SiVMS/SiNVR users database, including the passwords of all users in obfuscated cleartext.
Missing Authentication for Critical Function
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0)
CVE-2019-18340
5.5 - Medium
- December 12, 2019
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0), Control Center Server (CCS) (All versions >= V1.5.0), SiNVR/SiVMS Video Server (All versions < V5.0.0), SiNVR/SiVMS Video Server (All versions >= V5.0.0). Both the SiVMS/SiNVR Video Server and the Control Center Server (CCS) store user and device passwords by applying weak cryptography. A local attacker could exploit this vulnerability to extract the passwords from the user database and/or the device configuration files to conduct further attacks.
Use of a Broken or Risky Cryptographic Algorithm
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Siemens Sinvrsivms Video Server or by Siemens? Click the Watch button to subscribe.
