2 matches found
CVE-2021-33554 UDP Technology/Geutebrück camera devices: Command injection in appfile.filename parameter leading to RCE
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code...
CVE-2021-33554
CVE-2021-33554 affects Geutebrück UDP Technology-based IP cameras (G-Cam E2 series; G-Code encoders/EEC-2xx, etc.) and related devices. The vulnerability is command injection in the appfile.filename parameter, enabling remote code execution. Affected firmware versions include ≤1.12.0.27 and 1.12....