N/A

The EFM ipTIME C200 IP Camera is affected by a Command Injection vulnerability in /login.cgi?logout=1 script. To exploit this vulnerability, an attacker can send a GET request that executes arbitrary OS commands via cookie value.

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

输入验证不恰当

EFM ipTIME C200 IP Camera 命令注入漏洞

EFM ipTIME C200 IP Camera是韩国EFM公司的一个硬件设备。提供了一个用于监控的摄像头设备。 EFM ipTIME C200 IP Camera中存在命令注入漏洞，该漏洞源于网络系统或产品未对输入的数据进行正确的验证。

N/A

N/A