CVE-2018-19073

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. They allow attackers to execute arbitrary OS commands via shell metacharacters in the modelName, by leveraging /mnt/mtd/app/config/ProductConfig.xml write access.
References
Configurations

Configuration 1


Information

Published : 2018-11-07 06:29

Updated : 2018-12-11 02:49


NVD link : CVE-2018-19073

Mitre link : CVE-2018-19073

Products Affected
No products.
CWE