CVE-2021-33547 UDP Technology/Geutebrück camera devices: Buffer overflow in profile parameter leading to RCE

🗓️ 13 Sep 2021 17:55:38Reported by CERTVDEType

UDP Technology/Geutebrück camera devices vulnerable to buffer overflow for remote code executio

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2021-33547	13 Sep 202122:15	–	circl
CNNVD	Geutebrück G-Cam E2 和 G-Code 缓冲区错误漏洞	27 Jul 202100:00	–	cnnvd
CVE	CVE-2021-33547	13 Sep 202117:55	–	cve
ICS	Geutebrück G-Cam E2 and G-Code	27 Jul 202100:00	–	ics
Malwarebytes	UDP Technology IP Camera firmware vulnerabilities allow for attacker to achieve root	28 Jul 202113:04	–	malwarebytes
NVD	CVE-2021-33547	13 Sep 202118:15	–	nvd
OSV	CVE-2021-33547	13 Sep 202118:15	–	osv
Prion	Stack overflow	13 Sep 202118:15	–	prion

[
  {
    "product": "E2 Series",
    "vendor": "Geutebrück",
    "versions": [
      {
        "status": "affected",
        "version": "EBC-21xx 1.12.13.2"
      },
      {
        "status": "affected",
        "version": "EBC-21xx 1.12.14.5"
      },
      {
        "status": "affected",
        "version": "EFD-22xx 1.12.13.2"
      },
      {
        "status": "affected",
        "version": "EFD-22xx 1.12.14.5"
      },
      {
        "status": "affected",
        "version": "ETHC-22xx 1.12.13.2"
      },
      {
        "status": "affected",
        "version": "ETHC-22xx 1.12.14.5"
      },
      {
        "status": "affected",
        "version": "EWPC-22xx 1.12.13.2"
      },
      {
        "status": "affected",
        "version": "EWPC-22xx 1.12.14.5"
      },
      {
        "lessThanOrEqual": "1.12.0.27",
        "status": "affected",
        "version": "EBC-21xx",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "1.12.0.27",
        "status": "affected",
        "version": "EFD-22xx",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "1.12.0.27",
        "status": "affected",
        "version": "ETHC-22xx",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "1.12.0.27",
        "status": "affected",
        "version": "EWPC-22xx",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Encoder G-Code",
    "vendor": "Geutebrück",
    "versions": [
      {
        "status": "affected",
        "version": "EEC-2xx 1.12.13.2"
      },
      {
        "status": "affected",
        "version": "EEC-2xx 1.12.14.5"
      },
      {
        "status": "affected",
        "version": "EEN-20xx 1.12.13.2"
      },
      {
        "status": "affected",
        "version": "EEN-20xx 1.12.14.5"
      },
      {
        "lessThanOrEqual": "1.12.0.27",
        "status": "affected",
        "version": "EEC-2xx",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "1.12.0.27",
        "status": "affected",
        "version": "EEN-20xx",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
randorisec	www.randorisec.fr/fr/udp-technology-ip-camera-vulnerabilities/
us-cert	www.us-cert.cisa.gov/ics/advisories/icsa-21-208-03

13 Sep 2021 17:55Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.2

EPSS0.19313

CWE-121