CVE-2017-2873 in C1 Indoor HD Camerainfo

Zusammenfassung

von MITRE

An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can allow for a user to inject arbitrary shell characters during the SoftAP configuration resulting in command injection. An attacker can simply send an HTTP request to the device to trigger this vulnerability.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Talos

Reservieren

30.11.2016

Veröffentlichung

19.09.2018

Moderieren

akzeptiert

Eintrag

VDB-124233

CPE

bereit

CWE

CWE-77 (bestätigt)

CVSS

7.2 (NVD)

EPSS

0.08880

KEV

nein

Aktivitäten

very low

Sektor

Police, Energy, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2873
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2873
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2873/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!