Published: 24/01/2020 Updated: 31/01/2020

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vivotek pt7135_firmware 0300a
vivotek pt7135_firmware 0400a

Core Security - Corelabs Advisory corelabscoresecuritycom Vivotek IP Cameras Multiple Vulnerabilities 1 *Advisory Information* Title: Vivotek IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0301 Advisory URL: wwwcoresecuritycom/advisories/vivotek-ip-cameras-multiple-vulnerabilities Date published: 2013-04-29 Date o ...

Core Security Technologies Advisory - Vivotek IP Cameras suffer from information leak, buffer overflow, authentication, path traversal, and command injection vulnerabilities Vulnerable are Vivotek PT7135 IP camera with firmware 0300a, Vivotek PT7135 IP camera with firmware 0400a, and possibly others ...

CWE-78 https://exchange.xforce.ibmcloud.com/vulnerabilities/83946 https://www.coresecurity.com/advisories/vivotek-ip-cameras-multiple-vulnerabilities http://www.securityfocus.com/bid/59575 https://github.com/offensive-security/exploitdb/blob/master/exploits/hardware/webapps/25139.txt https://packetstormsecurity.com/files/cve/CVE-2013-1598 https://nvd.nist.gov https://www.exploit-db.com/exploits/25139/

CVE-2013-1598

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect