CVE-2018-19081
Summary
| CVE | CVE-2018-19081 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-11-07 18:29:00 UTC |
| Updated | 2018-12-13 15:57:00 UTC |
| Description | An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The ONVIF devicemgmt SetDNS method allows remote attackers to execute arbitrary OS commands via the IPv4Address field. |
Risk And Classification
Problem Types: CWE-78
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Foscam | C2 | - | All | All | All |
| Hardware | Foscam | C2 | - | All | All | All |
| Operating System | Foscam | C2 Application Firmware | 2.72.1.32 | All | All | All |
| Operating System | Foscam | C2 Application Firmware | 2.72.1.32 | All | All | All |
| Operating System | Foscam | C2 System Firmware | 1.11.1.8 | All | All | All |
| Operating System | Foscam | C2 System Firmware | 1.11.1.8 | All | All | All |
| Hardware | Opticam | I5 | - | All | All | All |
| Hardware | Opticam | I5 | - | All | All | All |
| Operating System | Opticam | I5 Application Firmware | 2.21.1.128 | All | All | All |
| Operating System | Opticam | I5 Application Firmware | 2.21.1.128 | All | All | All |
| Operating System | Opticam | I5 System Firmware | 1.5.2.11 | All | All | All |
| Operating System | Opticam | I5 System Firmware | 1.5.2.11 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| sintonen.fi/advisories/foscam-ip-camera-multiple-vulnerabilities.txt | MISC | sintonen.fi | Exploit, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.