CVE-2020-36885

Name of the Vulnerable Software and Affected Versions Sony IPELA Network Camera version 1.82.01

Description The software contains a stack buffer overflow issue in the ftpclient.cgi API endpoint. Remote attackers can potentially execute arbitrary code or cause a denial of service by sending a crafted POST request with oversized data to the FTP client functionality. The vulnerable API endpoint is /ftpclient.cgi. The request exploits the handling of the data parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.