Vulnerability CVE-2017-2112

Vulnerability CVE-2017-2112

Published: 2017-04-28

Description:

TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE firmware version 1.18 and earlier, TS-WLC2 firmware version 1.18 and earlier, TS-WRLC firmware version 1.17 and earlier, TS-PTCAM firmware version 1.18 and earlier, TS-PTCAM/POE firmware version 1.18 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.

CVSS2 => (AV:A/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score	Impact Subscore	Exploitability Subscore
8.3/10	10/10	6.5/10

Exploit range	Attack complexity	Authentication
Adjacent network	Low	No required
Confidentiality impact	Integrity impact	Availability impact
Complete	Complete	Complete

Affected software
Iodata -> Ts-wlce firmware
Iodata -> Ts-ptcam firmware
Iodata -> Ts-wptcam firmware
Iodata -> Ts-wptcam2 firmware
Iodata -> Ts-ptcam/poe firmware
Iodata -> Ts-wlc2 firmware
Iodata -> Ts-wrlc firmware

References:

http://jvn.jp/en/jp/JVN46830433/index.html

http://www.iodata.jp/support/information/2017/camera201702/

http://www.securityfocus.com/bid/96620

Copyright 2024, cxsecurity.com