CVE-2017-2856
CVE-2017-2856
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8.1EPSS 1.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
17 sep 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue HTTP server.
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
Foscam · Foscam Indoor IP Camera C1 Series