CVE-2017-2872 | Insufficient security checks exist in the recovery procedure… | CVSS 9.9 CRITICAL

Description

Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A HTTP request can allow for a user to perform a firmware upgrade using a crafted image. Before any firmware upgrades in this image are flashed to the device, binaries as well as arguments to shell commands contained in the image are executed with elevated privileges.

Metadata

CVE ID: CVE-2017-2872
State: PUBLISHED
Assigner: talos
Reserved: 2016-12-01 00:00 UTC
Published: 2018-09-17 20:00 UTC
Last updated: 2024-09-16 18:43 UTC
Vendor / Product: Foscam / Foscam Indoor IP Camera C1 Series
Sources: cve.org · NVD

Severity & Metrics

9.9 CRITICAL CVSS 3.0

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products (1)

Vendor	Product	Platform	Versions
Foscam	Foscam Indoor IP Camera C1 Series	—	System Firmware Version: 1.9.3.18,Application Firmware Version: 2.52.2.43,Plug-In Version: 3.3.0.26

Weakness (CWE)

CWE	Source	Description
—	cna	Improper Authentication

CVSS scores (1)

Score	Severity	Version	Source	Vector
9.9	CRITICAL	3.0	cna	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References (1)

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0379