PT-2018-14794 · Foscam · Foscam Opticam I5

Published

2018-11-07

Updated

2018-12-13

CVE-2018-19081

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128

Description An issue was discovered that allows remote attackers to execute arbitrary OS commands. This is achieved through the ONVIF devicemgmt SetDNS method, specifically by exploiting the IPv4Address field.

Recommendations For Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128, consider restricting access to the ONVIF devicemgmt SetDNS method until a patch is available. As a temporary workaround, avoid using the IPv4Address field in the SetDNS method to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2018-19081

Affected Products

Foscam Opticam I5

PT-2018-14794 · Foscam · Foscam Opticam I5

CVE-2018-19081

Weakness Enumeration

Related Identifiers

Affected Products

References · 3