C1 Firmware Security Vulnerabilities and Issues — C1 Firmware CVE List

Lucene search

FoscamC1 Firmware

18 matches found

CVE•added 2018/07/09 5:29 p.m.•92 views

CVE-2018-6831

The setSystemTime function in Foscam Cameras C1 Lite V3, and C1 V3 with firmware 2.82.2.33 and earlier, FI9800P V3, FI9803P V4, FI9851P V3, and FI9853EP V2 2.84.2.33 and earlier, FI9816P V3, FI9821EP V2, FI9821P V3, FI9826P V3, and FI9831P V3 2.81.2.33 and earlier, C1, C1 V2, C1 Lite, and C1 Lite V...

9CVSS7.9AI score0.0162EPSS

CVE•added 2018/09/17 8:29 p.m.•66 views

CVE-2017-2857

An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue H...

9.3CVSS8.1AI score0.00422EPSS

CVE•added 2018/09/19 4:29 p.m.•61 views

CVE-2017-2855

9.3CVSS8.1AI score0.00422EPSS

CVE•added 2018/09/19 6:29 p.m.•61 views

CVE-2017-2877

A missing error check exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10001 could allow an attacker to reset the user accounts to factory defaults, without authentication.

9.8CVSS9.2AI score0.00492EPSS

CVE•added 2018/04/17 8:29 p.m.•60 views

CVE-2017-2871

Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. An attacker who is in the same subnetwork of the camera or has remote administrator access can fully compromise the device by performing a firmware recovery us...

9.6CVSS8.6AI score0.00191EPSS

CVE•added 2018/09/19 6:29 p.m.•60 views

CVE-2017-2873

An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can allow for a user to inject arbitrary shell characters during the SoftAP configuration resulting i...

8.8CVSS7.3AI score0.07072EPSS

CVE•added 2018/09/19 4:29 p.m.•57 views

CVE-2017-2879

An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted UPnP discovery response can cause a buffer overflow resulting in overwriting arbitrary data. An attacker needs to be in t...

7.5CVSS5.5AI score0.00142EPSS

CVE•added 2018/09/17 6:29 p.m.•54 views

CVE-2017-2874

An information disclosure vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10001 can allow for a user to retrieve sensitive information without authentication.

7.5CVSS7.1AI score0.00496EPSS

CVE•added 2018/07/09 5:29 p.m.•54 views

CVE-2018-6830

Directory traversal vulnerability in Foscam Cameras C1 Lite V3, and C1 V3 with firmware 2.82.2.33 and earlier, FI9800P V3, FI9803P V4, FI9851P V3, and FI9853EP V2 2.84.2.33 and earlier, FI9816P V3, FI9821EP V2, FI9821P V3, FI9826P V3, and FI9831P V3 2.81.2.33 and earlier, C1, C1 V2, C1 Lite, and C1...

7.5CVSS7.4AI score0.00923EPSS

CVE•added 2018/09/17 8:29 p.m.•53 views

CVE-2017-2854

9.3CVSS8.1AI score0.00422EPSS

CVE•added 2018/09/19 4:29 p.m.•52 views

CVE-2017-2875

An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10000 can cause a buffer overflow resulting in overwriting arbitrary data.

9.1CVSS9.4AI score0.00447EPSS

CVE•added 2018/09/17 8:29 p.m.•51 views

CVE-2017-2856

9.3CVSS8.1AI score0.00422EPSS

CVE•added 2018/09/19 4:29 p.m.•51 views

CVE-2017-2878

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an HTT...

8.8CVSS7.7AI score0.0135EPSS

CVE•added 2018/09/19 6:29 p.m.•50 views

CVE-2017-2876

8.8CVSS7.8AI score0.0034EPSS

CVE•added 2018/09/17 8:29 p.m.•48 views

CVE-2017-2872

Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A HTTP request can allow for a user to perform a firmware upgrade using a crafted image. Before any firmware upgrades in this image are flashed to the device, ...

9.9CVSS7AI score0.00288EPSS

CVE•added 2018/07/09 5:29 p.m.•47 views

CVE-2018-6832

Stack-based buffer overflow in the getSWFlag function in Foscam Cameras C1 Lite V3, and C1 V3 with firmware 2.82.2.33 and earlier, FI9800P V3, FI9803P V4, FI9851P V3, and FI9853EP V2 2.84.2.33 and earlier, FI9816P V3, FI9821EP V2, FI9821P V3, FI9826P V3, and FI9831P V3 2.81.2.33 and earlier, C1, C1...

7.8CVSS7.6AI score0.01212EPSS

CVE•added 2018/04/24 7:29 p.m.•46 views

CVE-2017-2833

An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can allow for a user to inject arbitrary shell characters resulting in command injection during the b...

8.8CVSS7.6AI score0.00937EPSS

CVE•added 2018/04/24 7:29 p.m.•41 views

CVE-2017-2832

9CVSS7.4AI score0.018EPSS