PT-2020-9160 · Geutebruck · Geutebruck Ip Cameras G-Cam+1

Published

2020-01-17

Updated

2020-01-24

CVE-2019-10956

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Geutebruck IP Cameras G-Code(EEC-2xxx) versions 1.12.0.25 and prior Geutebruck IP Cameras G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx) versions 1.12.0.25 and prior

Description The issue allows a remote authenticated user to execute commands as root by using a specially crafted URL command.

Recommendations For Geutebruck IP Cameras G-Code(EEC-2xxx) versions 1.12.0.25 and prior, update to a version later than 1.12.0.25 to resolve the issue. For Geutebruck IP Cameras G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx) versions 1.12.0.25 and prior, update to a version later than 1.12.0.25 to resolve the issue.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2019-10956

Affected Products

Geutebruck Ip Cameras G-Cam

Geutebruck Ip Cameras G-Code

PT-2020-9160 · Geutebruck · Geutebruck Ip Cameras G-Cam+1

CVE-2019-10956

Weakness Enumeration

Related Identifiers

Affected Products

References · 3