CVE-2017-11564

Name of the Vulnerable Software and Affected Versions D-Link EyeOn Baby Monitor (DCS-825L) version 1.08.1

Description The issue allows an attacker to execute commands by forging malicious HTTP requests to the web service framework, but authentication is required before the attack can be executed.

Recommendations For D-Link EyeOn Baby Monitor (DCS-825L) version 1.08.1, consider restricting access to the web service framework until a fix is available. As a temporary workaround, limit the ability to execute commands through the web interface to minimize the risk of exploitation.