CVE-2017-2829 in C1 Indoor HD Camerathông tin

Tóm tắt

Bởi MITRE

An exploitable directory traversal vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can cause the application to read a file from disk but a failure to adequately filter characters results in allowing an attacker to specify a file outside of a directory. An attacker can simply send an HTTP request to the device to trigger this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

Talos

Đặt trước

01/12/2016

Tiết lộ

21/06/2017

Kiểm duyệt

được chấp nhận

mục

VDB-102719

CPE

sẵn sàng

CWE

CWE-22 (Đã xác nhận)

CVSS

6.5 (NVD)

EPSS

0.05373

KEV

không

Các hoạt động

rất thấp

ngành

Police, Agriculture, ...

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2829
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2829
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2829/

◂ Trước Tổng Quan Tiếp theo ▸

Do you know our Splunk app?

Download it now for free!