qvidium CVE Vulnerabilities & Metrics

Focus on qvidium vulnerabilities and metrics.

Last updated: 16 Jan 2026, 23:25 UTC

About qvidium Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with qvidium. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total qvidium CVEs: 2
Earliest CVE date: 17 Feb 2023, 22:15 UTC
Latest CVE date: 19 Nov 2025, 20:15 UTC

Latest CVE reference: CVE-2025-63213

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 1

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): -100.0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): -100.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical qvidium CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 0.0

Max CVSS: 0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	2
4.0-6.9	0
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS qvidium CVEs

These are the five CVEs with the highest CVSS scores for qvidium, sorted by severity first and recency.

CVE-2025-63213 qvidium Published on 19 Nov 2025, 20:15 UTC (CVSS: 0)
The QVidium Opera11 device (firmware version 2.9.0-Ax4x-opera11) is vulnerable to Remote Code Execution (RCE) due to improper input validation on the /cgi-bin/net_ping.cgi endpoint. An attacker can exploit this vulnerability by sending a specially crafted GET request with a malicious parameter to inject arbitrary commands. These commands are executed with root privileges, allowing attackers to ...
CVE-2022-40021 qvidium Published on 17 Feb 2023, 22:15 UTC (CVSS: 0)
QVidium Technologies Amino A140 (prior to firmware version 1.0.0-283) was discovered to contain a command injection vulnerability.

All CVEs for qvidium

CVE-2025-63213 qvidium vulnerability CVSS: 0 19 Nov 2025, 20:15 UTC

The QVidium Opera11 device (firmware version 2.9.0-Ax4x-opera11) is vulnerable to Remote Code Execution (RCE) due to improper input validation on the /cgi-bin/net_ping.cgi endpoint. An attacker can exploit this vulnerability by sending a specially crafted GET request with a malicious parameter to inject arbitrary commands. These commands are executed with root privileges, allowing attackers to gain full control over the device. This poses a significant security risk to any device running this software.

CVE-2022-40021 qvidium vulnerability CVSS: 0 17 Feb 2023, 22:15 UTC

QVidium Technologies Amino A140 (prior to firmware version 1.0.0-283) was discovered to contain a command injection vulnerability.