CVE-2013-2560

Name of the Vulnerable Software and Affected Versions Foscam devices with firmware prior to 11.37.2.49

Description A directory traversal issue exists in the web interface, allowing remote attackers to read arbitrary files by including a .. (dot dot) in the URI. This could potentially lead to the discovery of web credentials or Wi-Fi credentials.

Recommendations For Foscam devices with firmware prior to 11.37.2.49, update the firmware to version 11.37.2.49 or later to resolve the issue. As a temporary workaround, consider restricting access to the web interface to minimize the risk of exploitation.