Browse all 4 CVE security advisories affecting Ningyuanda. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Ningyuanda develops network security products focused on threat detection and prevention, primarily serving enterprise networks. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control issues. While no major public security incidents have been widely documented, the four CVEs associated with the company highlight recurring weaknesses in authentication mechanisms and secure coding practices. These vulnerabilities typically allow attackers to bypass security controls or execute arbitrary code, potentially compromising entire network segments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-14749 | Ningyuanda TC155 ONVIF PTZ Control device_service access control — TC155CWE-284 | 6.3 | Medium | 2025-12-16 |
| CVE-2025-14748 | Ningyuanda TC155 ONVIF Device Management Service device_service access control — TC155CWE-284 | 5.4 | Medium | 2025-12-16 |
| CVE-2025-14747 | Ningyuanda TC155 RTSP Service denial of service — TC155CWE-404 | 4.3 | Medium | 2025-12-16 |
| CVE-2025-14746 | Ningyuanda TC155 RTSP Live Video Stream Endpoint improper authentication — TC155CWE-287 | 4.3 | Medium | 2025-12-16 |
This page lists every published CVE security advisory associated with Ningyuanda. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.