CVE-2021-30166
Summary
| CVE | CVE-2021-30166 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-04-28 10:15:00 UTC |
| Updated | 2021-05-05 20:36:00 UTC |
| Description | The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission. |
Risk And Classification
Problem Types: CWE-78
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Meritlilin | P2g1022 | - | All | All | All |
| Hardware | Meritlilin | P2g1022x | - | All | All | All |
| Operating System | Meritlilin | P2g1022x Firmware | All | All | All | All |
| Operating System | Meritlilin | P2g1022 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2g1052 | - | All | All | All |
| Operating System | Meritlilin | P2g1052 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r3022ae2 | - | All | All | All |
| Operating System | Meritlilin | P2r3022ae2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r3052ae2 | - | All | All | All |
| Operating System | Meritlilin | P2r3052ae2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6322ae2 | - | All | All | All |
| Operating System | Meritlilin | P2r6322ae2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6322ae4 | - | All | All | All |
| Operating System | Meritlilin | P2r6322ae4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6352ae2 | - | All | All | All |
| Operating System | Meritlilin | P2r6352ae2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6352ae4 | - | All | All | All |
| Operating System | Meritlilin | P2r6352ae4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6522e2 | - | All | All | All |
| Operating System | Meritlilin | P2r6522e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6522e4 | - | All | All | All |
| Operating System | Meritlilin | P2r6522e4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6552e2 | - | All | All | All |
| Operating System | Meritlilin | P2r6552e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6552e4 | - | All | All | All |
| Operating System | Meritlilin | P2r6552e4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6822e2 | - | All | All | All |
| Operating System | Meritlilin | P2r6822e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6822e4 | - | All | All | All |
| Operating System | Meritlilin | P2r6822e4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6852e2 | - | All | All | All |
| Operating System | Meritlilin | P2r6852e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r6852e4 | - | All | All | All |
| Operating System | Meritlilin | P2r6852e4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r8822e2 | - | All | All | All |
| Operating System | Meritlilin | P2r8822e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r8822e4 | - | All | All | All |
| Operating System | Meritlilin | P2r8822e4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r8852e2 | - | All | All | All |
| Operating System | Meritlilin | P2r8852e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P2r8852e4 | - | All | All | All |
| Operating System | Meritlilin | P2r8852e4 Firmware | All | All | All | All |
| Hardware | Meritlilin | P3r6322e2 | - | All | All | All |
| Operating System | Meritlilin | P3r6322e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P3r6522e2 | - | All | All | All |
| Operating System | Meritlilin | P3r6522e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | P3r8822e2 | - | All | All | All |
| Operating System | Meritlilin | P3r8822e2 Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r6422ax | - | All | All | All |
| Hardware | Meritlilin | Z2r6422ax-p | - | All | All | All |
| Operating System | Meritlilin | Z2r6422ax-p Firmware | All | All | All | All |
| Operating System | Meritlilin | Z2r6422ax Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r6452ax | - | All | All | All |
| Hardware | Meritlilin | Z2r6452ax-p | - | All | All | All |
| Operating System | Meritlilin | Z2r6452ax-p Firmware | All | All | All | All |
| Operating System | Meritlilin | Z2r6452ax Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r6522x | - | All | All | All |
| Operating System | Meritlilin | Z2r6522x Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r6552x | - | All | All | All |
| Operating System | Meritlilin | Z2r6552x Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8022ex25 | - | All | All | All |
| Operating System | Meritlilin | Z2r8022ex25 Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8052ex25 | - | All | All | All |
| Operating System | Meritlilin | Z2r8052ex25 Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8122x-p | - | All | All | All |
| Operating System | Meritlilin | Z2r8122x-p Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8122x2-p | - | All | All | All |
| Operating System | Meritlilin | Z2r8122x2-p Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8152x-p | - | All | All | All |
| Operating System | Meritlilin | Z2r8152x-p Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8152x2-p | - | All | All | All |
| Operating System | Meritlilin | Z2r8152x2-p Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8822ax | - | All | All | All |
| Operating System | Meritlilin | Z2r8822ax Firmware | All | All | All | All |
| Hardware | Meritlilin | Z2r8852ax | - | All | All | All |
| Operating System | Meritlilin | Z2r8852ax Firmware | All | All | All | All |
| Hardware | Meritlilin | Z3r6422x3 | - | All | All | All |
| Operating System | Meritlilin | Z3r6422x3 Firmware | All | All | All | All |
| Hardware | Meritlilin | Z3r6522x | - | All | All | All |
| Operating System | Meritlilin | Z3r6522x Firmware | All | All | All | All |
| Hardware | Meritlilin | Z3r8922x3 | - | All | All | All |
| Operating System | Meritlilin | Z3r8922x3 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| CHT Security Red Team Discovered Several Vulnerabilities in Well-Known IP Camera|中華資安國際 CHT Security Co., Ltd. | MISC | www.chtsecurity.com | |
| LILIN IP Camera P2 Z2 Multiple Vulnerabilities.md · GitHub | MISC | gist.github.com | |
| www.meritlilin.com/assets/uploads/support/file/M00166-TW.pdf | MISC | www.meritlilin.com | |
| TWCERT/CC台灣電腦網路危機處理暨協調中心-利凌企業 P2/Z2/P3/Z3系列網路攝影機 - Command Injection | MISC | www.twcert.org.tw | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.