An issue exists on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The ONVIF devicemgmt SetDNS method allows remote malicious users to execute arbitrary OS commands via the IPv4Address field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opticam i5_application_firmware 2.21.1.128 |
||
opticam i5_system_firmware 1.5.2.11 |
||
foscam c2_application_firmware 2.72.1.32 |
||
foscam c2_system_firmware 1.11.1.8 |