Submit #383846: edimax IC-5150W 3.10 command injectioninfo

Titleedimax IC-5150W 3.10 command injection
Descriptionedimax IC-5150W has command injection vulnerability in ipcam_cgi.The program receives the value of the host field through the cgiFormString function, concatenates it into a formatted string using the sprintf function, and finally executes a system command using the system function. Since the attacker's input is not filtered, any command can be executed.
Source⚠️ https://yjz233.notion.site/edimax-IC-5150W-has-command-injection-vulnerability-in-ipcam_cgi-cc72c7b7e2f24ba6a6609b6fcf78df34?pvs=4
User
 jylsec (UID 60282)
Submission07/31/2024 15:38 (2 years ago)
Moderation08/08/2024 16:37 (8 days later)
StatusDuplicate
VulDB entry273986 [Edimax IC-6220DC/IC-5150W up to 3.06 ipcam_cgi cgiFormString host command injection]
Points0

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!