PT-2018-8999 · I O Data · Ts-Wrlp+2

Daiki Ichinose

Published

2018-09-07

Updated

2019-10-03

CVE-2018-0661

CVSS v3.1

8.8

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions I-O DATA network camera products TS-WRLP versions 1.09.04 and earlier I-O DATA network camera products TS-WRLA versions 1.09.04 and earlier I-O DATA network camera products TS-WRLP/E versions 1.09.04 and earlier

Description The issue allows an attacker on the same network segment to bypass access restrictions, potentially leading to the execution of arbitrary OS commands or code, as well as information leakage or alteration, including credentials.

Recommendations For I-O DATA network camera products TS-WRLP versions 1.09.04 and earlier, update the firmware to a version later than 1.09.04. For I-O DATA network camera products TS-WRLA versions 1.09.04 and earlier, update the firmware to a version later than 1.09.04. For I-O DATA network camera products TS-WRLP/E versions 1.09.04 and earlier, update the firmware to a version later than 1.09.04.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-0661

Affected Products

Ts-Wrla

Ts-Wrlp

Ts-Wrlp/E

PT-2018-8999 · I O Data · Ts-Wrlp+2

CVE-2018-0661

Related Identifiers

Affected Products

References · 4