CVE-2017-2829 in C1 Indoor HD Cameraالمعلومات

الملخص

بحسب MITRE

An exploitable directory traversal vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can cause the application to read a file from disk but a failure to adequately filter characters results in allowing an attacker to specify a file outside of a directory. An attacker can simply send an HTTP request to the device to trigger this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Talos

حجز

01/12/2016

إفشاء

21/06/2017

الاعتدال

تمت الموافقة

إدخال

VDB-102719

CPE

جاهز

CWE

CWE-22 (مؤكد)

CVSS

6.5 (NVD)

EPSS

0.05373

KEV

لا

النشاطات

منخفض جدًا

القطاع

Agriculture, Telecommunication, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2829
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2829
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2829/

التالي ▸نظرة عامة ◂ السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!