Edimax IC-7100 RCE (CVE-2025-1316)

🗓️ 17 Jul 2025 00:00:00Reported by TenableType

Edimax IC-7100 cameras allow remote code execution due to improper request neutralization vulnerability.

Reporter	Title	Published	Views	Family All 18
ATTACKERKB	CVE-2025-1316	5 Mar 202500:00	–	attackerkb
Circl	CVE-2025-1316	4 Mar 202511:00	–	circl
CISA KEV Catalog	Edimax IC-7100 IP Camera OS Command Injection Vulnerability	19 Mar 202500:00	–	cisa_kev
CISA	CISA Adds Three Known Exploited Vulnerabilities to Catalog	19 Mar 202512:00	–	cisa
CNNVD	Edimax IC-7100 操作系统命令注入漏洞	5 Mar 202500:00	–	cnnvd
CVE	CVE-2025-1316	4 Mar 202523:36	–	cve
Cvelist	CVE-2025-1316 Edimax IC-7100 IP Camera OS Command Injection	4 Mar 202523:36	–	cvelist
ICS	Edimax IC-7100 IP Camera	4 Mar 202507:00	–	ics
NVD	CVE-2025-1316	5 Mar 202500:15	–	nvd
Positive Technologies	PT-2025-9719	4 Mar 202500:00	–	ptsecurity

Source	Link
cisa	www.cisa.gov/news-events/ics-advisories/icsa-25-063-08
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(242268);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/07/17");

  script_cve_id("CVE-2025-1316");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2025/04/09");

  script_name(english:"Edimax IC-7100 RCE (CVE-2025-1316)");

  script_set_attribute(attribute:"synopsis", value:
"Edimax IC-7100 network cameras are affected by a remote code execution vulnerability.");
  script_set_attribute(attribute:"description", value:
"Edimax IC-7100 network cameras do not properly neutralize request. An attacker can create specially crafted requests
to achieve remote code execution on the device.

Note that Nessus has not tested for this issue and has relied only on the device's self-reported model number.");
  script_set_attribute(attribute:"see_also", value:"https://www.cisa.gov/news-events/ics-advisories/icsa-25-063-08");
  # **https://www.edimax.com/edimax/post/post/data/edimax/global/press_releases/4801/
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?7b65de9a");
  script_set_attribute(attribute:"solution", value:
"See CISA advisory");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-1316");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/03/25");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/03/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/07/17");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/a:edimax:network_camera");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("edimax_network_camera_detected.nbin");
  script_require_keys("installed_sw/Edimax Network Camera");

  exit(0);
}

include('vcf.inc');
include('install_func.inc');
include('http.inc');

var app = 'Edimax Network Camera';
get_install_count(app_name:app, exit_if_zero:TRUE);

var port = get_http_port(default:80);

var install = get_single_install(app_name:app, port:port, exit_if_unknown_ver:false);

if (install.Model !~ "^IC-7100$")
  audit(AUDIT_HOST_NOT, 'an affected model');

var report =
  '\n  This Product has reached its End-of-Life & is No Longer Supported' +
  '\n';

security_report_v4(port:port, severity:SECURITY_HOLE, extra:report);

17 Jul 2025 00:00Current

9.6High risk

Vulners AI Score9.6

CVSS 3.19.8

CVSS 49.3

EPSS0.86745

SSVC