CVE-2017-2833

Name of the Vulnerable Software and Affected Versions: Foscam C1 Indoor HD Camera version 2.52.2.37

Description: A command injection issue exists in the web management interface of the affected device. It allows an attacker to inject arbitrary shell characters through a specially crafted HTTP request, resulting in command injection during the boot process. This can be triggered by sending an HTTP request and then rebooting the device.

Recommendations: For version 2.52.2.37, consider disabling the web management interface until a patch is available to prevent potential command injection attacks. Restrict access to the device's management interface to minimize the risk of exploitation. Avoid using the device until a fixed version is released. At the moment, there is no information about a newer version that contains a fix for this vulnerability.