CVE-2017-11564

2018-08-2419:00:00

mitre

www.cve.org

9.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.6%

JSON

The D-Link EyeOn Baby Monitor (DCS-825L) 1.08.1 has multiple command injection vulnerabilities in the web service framework. An attacker can forge malicious HTTP requests to execute commands; authentication is required before executing the attack.

References

seclists.org/fulldisclosure/2018/Aug/19

documents.trendmicro.com/assets/tech_brief_Device_Vulnerabilities_in_the_Connected_Home2.pdf