CVE-2023-43755: Zavio IP Camera Stack-Based Buffer Overflow

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-43755

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Zavio IP Camera Stack-Based Buffer Overflow

Source: NVD (National Vulnerability Database)

Vulnerability Description

Zavio CF7500, CF7300, CF7201, CF7501, CB3211, CB3212, CB5220, CB6231, B8520, B8220, and CD321 IP Cameras with firmware version M2.1.6.05 are vulnerable to multiple instances of stack-based overflows. During the processing and parsing of certain fields in XML elements from incoming network requests, the product does not sufficiently check or validate allocated buffer size. This may lead to remote code execution.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

栈缓冲区溢出

Source: NVD (National Vulnerability Database)

Vulnerability Title

Zavio IP Camera 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Zavio CF Series是Zavio公司的一系列网络摄像头。 Zavio IP Camera存在安全漏洞，该漏洞源于容易受到基于堆栈的溢出影响，无法充分检查或验证分配的缓冲区大小，可能会导致远程代码执行。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Zavio	IP Camera CF7500	version M2.1.6.05	-
Zavio	IP Camera CF7300	version M2.1.6.05	-
Zavio	IP Camera CF7201	version M2.1.6.05	-
Zavio	IP Camera CF7501	version M2.1.6.05	-
Zavio	IP Camera CB3211	version M2.1.6.05	-
Zavio	IP Camera CB3212	version M2.1.6.05	-
Zavio	IP Camera CB5220	version M2.1.6.05	-
Zavio	IP Camera CB6231	version M2.1.6.05	-
Zavio	IP Camera B8520	version M2.1.6.05	-
Zavio	IP Camera B8220	version M2.1.6.05	-
Zavio	IP Camera CD321	version M2.1.6.05	-

II. Public POCs for CVE-2023-43755

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-43755

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: IP Camera CF7500

Same vendor: Zavio

Same weakness: CWE-121

V. Comments for CVE-2023-43755

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2023-43755

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-43755

III. Intelligence Information for CVE-2023-43755

IV. Related Vulnerabilities

V. Comments for CVE-2023-43755

Leave a comment