Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveTalosCVE-2017-2831
HistoryJun 21, 2017 - 1:29 p.m.

CVE-2017-2831

2017-06-2113:29:00
CWE-120
talos
web.nvd.nist.gov
32
4
cve
buffer overflow
vulnerability
foscam c1
web management interface
http request
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.002

Percentile

55.1%

JSON

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an HTTP request to the device to trigger this vulnerability.

Affected configurations

Nvd
Node
foscamc1_indoor_hd_camera_firmwareMatch2.52.2.37
AND
foscamc1_indoor_hd_cameraMatch-
VendorProductVersionCPE
foscamc1_indoor_hd_camera_firmware2.52.2.37cpe:2.3:o:foscam:c1_indoor_hd_camera_firmware:2.52.2.37:*:*:*:*:*:*:*
foscamc1_indoor_hd_camera-cpe:2.3:h:foscam:c1_indoor_hd_camera:-:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "Indoor IP Camera C1 Series",
    "vendor": "Foscam",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

Social References

More

Related

talos 1
cvelist 1
nvd 1
prion 1
seebug 1
talosblog 1
talos
talos
Foscam IP Video Camera CGIProxy.fcgi Query Append Buffer Overflow Vulnerability
2017-06-19 00:00:00
cvelist
cvelist
CVE-2017-2831
2017-06-21 13:00:00
nvd
nvd
CVE-2017-2831
2017-06-21 13:29:00
prion
prion
Buffer overflow
2017-06-21 13:29:00
seebug
seebug
Foscam IP Video Camera CGIProxy.fcgi Query Append Buffer Overflow Vulnerability(CVE-2017-2831)
2017-09-15 00:00:00
talosblog
talosblog
Vulnerability Spotlight: Multiple Foscam C1 Vulnerabilities Come in to Focus
2017-06-19 08:45:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.002

Percentile

55.1%

JSON
Related for CVE-2017-2831
talos1cvelist1nvd1prion1seebug1talosblog1