CVE-2017-2872 in C1 Indoor HD Camera정보

요약

\~에 의해 MITRE

Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A HTTP request can allow for a user to perform a firmware upgrade using a crafted image. Before any firmware upgrades in this image are flashed to the device, binaries as well as arguments to shell commands contained in the image are executed with elevated privileges.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

Talos

예약하다

2016. 11. 30.

공개

2018. 09. 17.

모더레이션

수락

항목

VDB-124139

CPE

준비됨

CWE

CWE-264 (확인됨)

CVSS

7.2 (NVD)

EPSS

0.00274

KEV

아니요

활동

매우 낮음

부문

Energy, Police, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2872
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2872
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2872/

◂ 이전 개요 다음 ▸

Interested in the pricing of exploits?

See the underground prices here!