Описание
Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. An attacker who is in the same subnetwork of the camera or has remote administrator access can fully compromise the device by performing a firmware recovery using a custom image.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:foscam:c1_firmware:2.52.2.43:*:*:*:*:*:*:*
cpe:2.3:h:foscam:c1:-:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00181
Низкий
9.6 Critical
CVSS3
8.8 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. An attacker who is in the same subnetwork of the camera or has remote administrator access can fully compromise the device by performing a firmware recovery using a custom image.
EPSS
Процентиль: 40%
0.00181
Низкий
9.6 Critical
CVSS3
8.8 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-287