mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
928 B
928 B
CVE-2018-19070
Description
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. They allow remote attackers to execute arbitrary OS commands via shell metacharacters in the usrName parameter of a CGIProxy.fcgi addAccount action.
POC
Reference
- https://sintonen.fi/advisories/foscam-ip-camera-multiple-vulnerabilities.txt
- https://sintonen.fi/advisories/foscam-ip-camera-multiple-vulnerabilities.txt
Github
No PoCs found on GitHub currently.