Invia #383845: edimax IC-6220DC 3.06 command injectioninformazioni

Titoloedimax IC-6220DC 3.06 command injection
Descrizioneedimax IC-6220DC has command injection vulnerability in ipcam_cgi.The program receives the value of the host field through the cgiFormString function, concatenates it into a formatted string using the sprintf function, and finally executes a system command using the system function. Since the attacker's input is not filtered, any command can be executed.
Fonte⚠️ https://yjz233.notion.site/edimax-IC-6220DC-has-command-injection-vulnerability-in-ipcam_cgi-2029d67721f2473b8cfce5e286a70307?pvs=4
Utente
 jylsec (UID 60282)
Sottomissione31/07/2024 15:37 (2 anni fa)
Moderazione08/08/2024 16:37 (8 days later)
StatoAccettato
Voce VulDB273986 [Edimax IC-6220DC/IC-5150W fino a 3.06 ipcam_cgi cgiFormString host escalationi di privilegi]
Punti16

PrecedenteVisione D'ensembleIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!