CVE-2017-2829 in C1 Indoor HD Cameraजानकारी

सारांश

द्वारा MITRE

An exploitable directory traversal vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can cause the application to read a file from disk but a failure to adequately filter characters results in allowing an attacker to specify a file outside of a directory. An attacker can simply send an HTTP request to the device to trigger this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

जिम्मेदार

Talos

आरक्षित करना

01/12/2016

प्रकटीकरण

21/06/2017

संयम

स्वीकृत

प्रविष्टि

VDB-102719

CPE

तैयार

CWE

CWE-22 (पुष्टि की गई)

CVSS

6.5 (NVD)

EPSS

0.05373

KEV

नहीं

गतिविधियाँ

बहुत कम

क्षेत्र

Telecommunication, Energy, ...

स्रोत

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2829
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2829
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2829/

◂ पिछला सिंहावलोकन अगला ▸

Interested in the pricing of exploits?

See the underground prices here!