CVE 8.8 HIGH

CVE-2026-30650_CVE-2026-30650

June 3, 2026 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as root on the device remotely.

AI Analysis

Remote buffer overflow vulnerability in Vivotek FD8136 camera admin interface

Basic Information

ID CVE-2026-30650

Source mitre

Published Jun 2, 2026 at 00:00

Modified Jun 3, 2026 at 15:09

Affected Product

Vendor Vivotek

Product Vivotek FD8136

Version FD8136-VVTK-0300a

Affected Versions n/a n/a n/a

CWE Classification

CWE-120

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Vivotek

Product FD8136

Version FD8136-VVTK-0300a

References

{
    "lastseen": "",
    "description": "A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an authenticated attacker to execute arbitrary code as root on the device remotely.",
    "published": "2026-06-02T00:00:00.000Z",
    "modified": "2026-06-03T15:09:17.104Z",
    "type": "cve",
    "title": "CVE-2026-30650",
    "source": "mitre",
    "references": "http://vivotek.com\nhttps://github.com/xchg-rax-rax/vulnerability-research/tree/main/CVE-2026-30650",
    "id": "CVE-2026-30650",
    "bulletinFamily": "",
    "cwe": [
        "CWE-120"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Vivotek FD8136",
    "version": "FD8136-VVTK-0300a",
    "vendor": "Vivotek",
    "ai_description": "Remote buffer overflow vulnerability in Vivotek FD8136 camera admin interface",
    "ai_severity": "High",
    "ai_vendor": "Vivotek",
    "ai_product": "FD8136",
    "ai_version": "FD8136-VVTK-0300a",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply