Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2017-5173

🗓️ 19 May 2017 02:43:00Reported by icscertType 
cve
 cve🔗 web.nvd.nist.gov👁 205 Views🌐 WEB

CVE-2017-5173: Improper Neutralization of Special Elements in Geutebruck IP Camera G-Cam/EFD-225

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today		Geutebruck 5.02024 G-Cam/EFD-2250 - Remote Command Execution Exploit
15 Feb 201700:00
zdt
ATTACKERKB		CVE-2017-5173
19 May 201700:00
attackerkb
BDU FSTEC		The vulnerability of the G-Cam/EFD-2250 IP camera’s microprogramming software lies in the improper elimination of certain elements in the data request logic, allowing a intruder to execute arbitrary code.
11 Oct 201700:00
bdu_fstec
Circl		CVE-2017-5173
15 Feb 201700:00
circl
CNVD		Geutebruck G-Cam/EFD-2250 Remote Code Execution Vulnerability
17 Feb 201700:00
cnvd
Check Point Advisories		Geutebruck IP Camera GCam Efd2250 Remote Code Execution (CVE-2017-5173; CVE-2017-5174)
24 Jul 201900:00
checkpoint_advisories
Cvelist		CVE-2017-5173
19 May 201702:43
cvelist
exploitpack		Geutebruck 5.02024 G-CamEFD-2250 - testaction.cgi Remote Command Execution (Metasploit)
15 Feb 201700:00
exploitpack
ICS		Geutebrück IP Cameras
14 Feb 201700:00
ics
NVD		CVE-2017-5173
19 May 201703:29
nvd
Rows per page
[
  {
    "product": "Geutebruck IP Cameras",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Geutebruck IP Cameras"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
typerequest body/uapi-cgi/viewer/testaction.cgiArbitrary command execution via POST to testaction.cgi by injecting command after a shell-escaped IP parameterCWE-78
iprequest body/uapi-cgi/viewer/testaction.cgiArbitrary command execution via POST to testaction.cgi by injecting command after a shell-escaped IP parameterCWE-78

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
13 May 2026 00:24Current
9.7High risk
Vulners AI Score9.7
CVSS 3.19.8
CVSS 210
EPSS0.84829
CWE-78In Wild
cve-2017-5173improper neutralizationspecial elementsgeutebruckip camerag-camefd-2250remote code executionnvd
205