CVE-2018-13114

Missing authentication and improper input validation in KERUI Wifi Endoscope Camera (YPC99) allow an attacker to execute arbitrary commands (with a length limit of 19 characters) via the "ssid" value, as demonstrated by ssid:;ping 192.168.1.2 in the body of a SETSSID command.
References
Configurations

Configuration 1


Information

Published : 2018-10-22 08:29

Updated : 2020-08-24 05:37


NVD link : CVE-2018-13114

Mitre link : CVE-2018-13114

Products Affected
No products.
CWE