Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2017-17105

🗓️ 18 Dec 2017 17:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 243 Views🌐 WEB

Zivif PR115-204-P-RS V2.3.4.2103 and V4.7.4.2121 web cameras remote command injection vulnerabilit

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
0daydb		Zivif Camera 2.3.4.2103 iptest.cgi Blind Remote Command Execution
21 Jun 202009:03
0daydb
0day.today		Zivif PR115-204-P-RS 2.3.4.2103 Bypass / Command Injection / Hardcoded Password Vulnerabilities
14 Dec 201700:00
zdt
0day.today		Zivif Camera 2.3.4.2103 iptest.cgi Blind Remote Command Execution Exploit
16 Jun 202000:00
zdt
ATTACKERKB		CVE-2017-17105
19 Dec 201700:00
attackerkb
BDU FSTEC		The vulnerability of the Zivif PR115-204-P-RS webcam’s microprogramming software is related to the lack of measures taken to neutralize special elements, allowing intruders to execute arbitrary commands.
1 Feb 201800:00
bdu_fstec
Circl		CVE-2017-17105
16 Jun 202012:15
circl
CNVD		Zivif PR115-204-P-RS Remote Command Injection Vulnerability
2 Jan 201800:00
cnvd
Cvelist		CVE-2017-17105
18 Dec 201717:00
cvelist
Microsoft Malware Protection		Microsoft research uncovers new Zerobot capabilities
21 Dec 202220:00
mmpc
Metasploit		Zivif Camera iptest.cgi Blind Remote Command Execution
29 Mar 202022:23
metasploit
Rows per page
NVD
Node
zivifpr115-204-p-rs_firmwareMatch2.3.4.2103
OR
zivifpr115-204-p-rs_firmwareMatch4.7.4.2121
AND
zivifpr115-204-p-rsMatch-
ParameterPositionPathDescriptionCWE
cmdquery paramcgi-bin/iptest.cgiUnauthenticated remote command execution via CGI iptest.cgi with crafted -url payload.CWE-78
-timequery paramcgi-bin/iptest.cgiUnauthenticated remote command execution via CGI iptest.cgi with crafted -url payload.CWE-78
-urlquery paramcgi-bin/iptest.cgiUnauthenticated remote command execution via CGI iptest.cgi with crafted -url payload.CWE-78
cmdquery paramweb/cgi-bin/hi3510/param.cgiUnauthenticated access to CGI param.cgi getuser allowing information disclosure and potential further exploitation.CWE-78

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 01:10Current
9.6High risk
Vulners AI Score9.6
CVSS 39.8
CVSS 210
EPSS0.84558
CWE-78In Wild
cve-2017-17105zivifpr115-204-p-rsv2.3.4.2103v4.7.4.2121web cameraremote command injectioncgiiptest.cginvd
243