Vulnerability Description
An Improper Neutralization of Special Elements (in an OS command) issue was discovered in Geutebruck IP Camera G-Cam/EFD-2250 Version 1.11.0.12. An improper neutralization of special elements vulnerability has been identified. If special elements are not properly neutralized, an attacker can call multiple parameters that can allow access to the root level operating system which could allow remote code execution.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Geutebrueck | Ip Camera G-Cam Efd-2250 Firmware | 1.11.0.12 |
| Geutebrueck | Ip Camera G-Cam Efd-2250 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/96209Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-045-02Third Party AdvisoryUS Government Resource
- https://www.exploit-db.com/exploits/41360/ExploitThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/96209Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-045-02Third Party AdvisoryUS Government Resource
- https://www.exploit-db.com/exploits/41360/ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2017-5173?
CVE-2017-5173 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An Improper Neutralization of Special Elements (in an OS command) issue was discovered in Geutebruck IP Camera G-Cam/EFD-2250 Version 1.11.0.12. An improper neutralization of special elements vulnerab...
How severe is CVE-2017-5173?
CVE-2017-5173 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-5173?
Check the references section above for vendor advisories and patch information. Affected products include: Geutebrueck Ip Camera G-Cam Efd-2250 Firmware, Geutebrueck Ip Camera G-Cam Efd-2250.