CVE-2017-2833

2018-04-24T19:29:00
ID CVE-2017-2833
Type cve
Reporter cve@mitre.org
Modified 2018-06-05T14:51:00

Description

An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can allow for a user to inject arbitrary shell characters resulting in command injection during the boot process. To trigger this vulnerability, an attacker needs to send an HTTP request and reboot the device.