Attila Szasz

**Name of the Vulnerable Software and Affected Versions** Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 version M2.1.6.05 **Description** The issue is caused by stack-based overflows during the processing and parsing of certain fields in XML elements from incoming network requests. The product does not sufficiently check or validate allocated buffer size, which may lead to remote code execution. This can be exploited by a remote attacker to execute arbitrary code. **Recommendations** For Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 version M2.1.6.05, update the firmware to a version that fixes the stack-based overflow vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 version M2.1.6.05 **Description** The issue is caused by a stack-based overflow in the IP cameras' firmware. While parsing certain XML elements from incoming network requests, the product does not sufficiently check or validate allocated buffer size, which may lead to remote code execution. **Recommendations** For Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 version M2.1.6.05, consider disabling the XML parsing functionality until a patch is available to prevent remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 IP Cameras version M2.1.6.05 **Description** The issue is caused by a stack-based overflow in the firmware of the affected IP cameras. During the process of updating certain settings sent from incoming network requests, the product does not sufficiently check or validate allocated buffer size. This may lead to remote code execution. **Recommendations** For Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 IP Cameras version M2.1.6.05, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 with firmware version M2.1.6.05 **Description** The issue is related to a command injection vulnerability in the implementation of binaries and handling of network requests in the affected IP cameras. **Recommendations** For Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 with firmware version M2.1.6.05, consider disabling the handling of network requests until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 with firmware version M2.1.6.05 **Description** The issue is caused by a stack-based buffer overflow. When processing XML elements from incoming network requests, the product does not sufficiently check or validate the allocated buffer size, which may lead to remote code execution. **Recommendations** For Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 with firmware version M2.1.6.05, consider switching to a different model as the manufacturer will not issue security updates. As a temporary workaround, consider restricting access to the XML processing functionality until a patch is available. Avoid using the affected firmware version until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.