A Command Injection vulnerability exists in Zavio IP Cameras up to and including 1.6.3 via the ap parameter to /cgi-bin/mft/wireless_mft.cgi, which could let a remote malicious user execute arbitrary code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zavio f3105_firmware |
||
zavio f312a_firmware |