Lucene search
CERTVDECVE-2021-33550HistorySep 13, 2021 - 6:15 p.m.
CVE-2021-33550
2021-09-1318:15:23
CWE-78
CERTVDE
web.nvd.nist.gov
57
cve-2021-33550
udp technology
geutebrück
command injection
vulnerability
remote code execution
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
EPSS
0.971
Percentile
99.8%
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected configurations
Node
geutebrueckg-cam_ebc-2110_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ebc-2110_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ebc-2110_firmwareMatch1.12.14.5
geutebrueckg-cam_ebc-2110
Node
geutebrueckg-cam_ebc-2111_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ebc-2111_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ebc-2111_firmwareMatch1.12.14.5
geutebrueckg-cam_ebc-2111
Node
geutebrueckg-cam_efd-2241_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_efd-2241_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_efd-2241_firmwareMatch1.12.14.5
geutebrueckg-cam_efd-2241
Node
geutebrueckg-cam_efd-2250_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_efd-2250_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_efd-2250_firmwareMatch1.12.14.5
geutebrueckg-cam_efd-2250
Node
geutebrueckg-cam_ethc-2230_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ethc-2230_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ethc-2230_firmwareMatch1.12.14.5
geutebrueckg-cam_ethc-2230
Node
geutebrueckg-cam_ethc-2239_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ethc-2239_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ethc-2239_firmwareMatch1.12.14.5
geutebrueckg-cam_ethc-2239
Node
geutebrueckg-cam_ethc-2240_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ethc-2240_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ethc-2240_firmwareMatch1.12.14.5
geutebrueckg-cam_ethc-2240
Node
geutebrueckg-cam_ethc-2249_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ethc-2249_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ethc-2249_firmwareMatch1.12.14.5
geutebrueckg-cam_ethc-2249
Node
geutebrueckg-cam_ewpc-2270_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ewpc-2270_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ewpc-2270_firmwareMatch1.12.14.5
geutebrueckg-cam_ewpc-2270
Node
geutebrueckg-code_eec-2400_firmwareRange≤1.12.0.27
ORgeutebrueckg-code_eec-2400_firmwareMatch1.12.13.2
ORgeutebrueckg-code_eec-2400_firmwareMatch1.12.14.5
geutebrueckg-code_eec-2400
Node
geutebrueckg-code_een-2010_firmwareRange≤1.12.0.27
ORgeutebrueckg-code_een-2010_firmwareMatch1.12.13.2
ORgeutebrueckg-code_een-2010_firmwareMatch1.12.14.5
geutebrueckg-code_een-2010
Node
geutebrueckg-code_een-2040_firmwareRange≤1.12.0.27
ORgeutebrueckg-code_een-2040_firmwareMatch1.12.13.2
ORgeutebrueckg-code_een-2040_firmwareMatch1.12.14.5
geutebrueckg-code_een-2040
Node
geutebrueckg-cam_ebc-2112_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ebc-2112_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ebc-2112_firmwareMatch1.12.14.5
geutebrueckg-cam_ebc-2112
Node
geutebrueckg-cam_efd-2251_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_efd-2251_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_efd-2251_firmwareMatch1.12.14.5
geutebrueckg-cam_efd-2251
Node
geutebrueckg-cam_ewpc-2275_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ewpc-2275_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ewpc-2275_firmwareMatch1.12.14.5
geutebrueckg-cam_ewpc-2275
Node
geutebrueckg-cam_ewpc-2271_firmwareRange≤1.12.0.27
ORgeutebrueckg-cam_ewpc-2271_firmwareMatch1.12.13.2
ORgeutebrueckg-cam_ewpc-2271_firmwareMatch1.12.14.5
geutebrueckg-cam_ewpc-2271
| Vendor | Product | Version | CPE |
|---|---|---|---|
| geutebrueck | g-cam_ebc-2110_firmware | * | cpe:2.3:o:geutebrueck:g-cam_ebc-2110_firmware:*:*:*:*:*:*:*:* |
| geutebrueck | g-cam_ebc-2110_firmware | 1.12.13.2 | cpe:2.3:o:geutebrueck:g-cam_ebc-2110_firmware:1.12.13.2:*:*:*:*:*:*:* |
| geutebrueck | g-cam_ebc-2110_firmware | 1.12.14.5 | cpe:2.3:o:geutebrueck:g-cam_ebc-2110_firmware:1.12.14.5:*:*:*:*:*:*:* |
| geutebrueck | g-cam_ebc-2110 | * | cpe:2.3:h:geutebrueck:g-cam_ebc-2110:*:*:*:*:*:*:*:* |
| geutebrueck | g-cam_ebc-2111_firmware | * | cpe:2.3:o:geutebrueck:g-cam_ebc-2111_firmware:*:*:*:*:*:*:*:* |
| geutebrueck | g-cam_ebc-2111_firmware | 1.12.13.2 | cpe:2.3:o:geutebrueck:g-cam_ebc-2111_firmware:1.12.13.2:*:*:*:*:*:*:* |
| geutebrueck | g-cam_ebc-2111_firmware | 1.12.14.5 | cpe:2.3:o:geutebrueck:g-cam_ebc-2111_firmware:1.12.14.5:*:*:*:*:*:*:* |
| geutebrueck | g-cam_ebc-2111 | * | cpe:2.3:h:geutebrueck:g-cam_ebc-2111:*:*:*:*:*:*:*:* |
| geutebrueck | g-cam_efd-2241_firmware | * | cpe:2.3:o:geutebrueck:g-cam_efd-2241_firmware:*:*:*:*:*:*:*:* |
| geutebrueck | g-cam_efd-2241_firmware | 1.12.13.2 | cpe:2.3:o:geutebrueck:g-cam_efd-2241_firmware:1.12.13.2:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Geutebrück",
"product": "E2 Series",
"versions": [
{
"version": "EBC-21xx 1.12.13.2",
"status": "affected"
},
{
"version": "EBC-21xx 1.12.14.5",
"status": "affected"
},
{
"version": "EFD-22xx 1.12.13.2",
"status": "affected"
},
{
"version": "EFD-22xx 1.12.14.5",
"status": "affected"
},
{
"version": "ETHC-22xx 1.12.13.2",
"status": "affected"
},
{
"version": "ETHC-22xx 1.12.14.5",
"status": "affected"
},
{
"version": "EWPC-22xx 1.12.13.2",
"status": "affected"
},
{
"version": "EWPC-22xx 1.12.14.5",
"status": "affected"
},
{
"version": "EBC-21xx",
"status": "affected",
"lessThanOrEqual": "1.12.0.27",
"versionType": "custom"
},
{
"version": "EFD-22xx",
"status": "affected",
"lessThanOrEqual": "1.12.0.27",
"versionType": "custom"
},
{
"version": "ETHC-22xx",
"status": "affected",
"lessThanOrEqual": "1.12.0.27",
"versionType": "custom"
},
{
"version": "EWPC-22xx",
"status": "affected",
"lessThanOrEqual": "1.12.0.27",
"versionType": "custom"
}
]
},
{
"vendor": "Geutebrück",
"product": "Encoder G-Code",
"versions": [
{
"version": "EEC-2xx 1.12.13.2",
"status": "affected"
},
{
"version": "EEC-2xx 1.12.14.5",
"status": "affected"
},
{
"version": "EEN-20xx 1.12.13.2",
"status": "affected"
},
{
"version": "EEN-20xx 1.12.14.5",
"status": "affected"
},
{
"version": "EEC-2xx",
"status": "affected",
"lessThanOrEqual": "1.12.0.27",
"versionType": "custom"
},
{
"version": "EEN-20xx",
"status": "affected",
"lessThanOrEqual": "1.12.0.27",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2021-33550
2021-09-13 18:15:23
cvelist
cvelist
prion
prion
Command injection
2021-09-13 18:15:00
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-09-03 16:30:26
metasploit
metasploit
Geutebruck Multiple Remote Command Execution
2021-08-31 23:24:14
zdt
zdt
Geutebruck Remote Command Execution Exploit
2021-09-02 00:00:00
packetstorm
packetstorm
Geutebruck Remote Command Execution
2021-09-02 00:00:00
malwarebytes
malwarebytes
ics
ics
Geutebrück G-Cam E2 and G-Code
2021-07-27 12:00:00
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
7.3
Confidence
High
EPSS
0.971
Percentile
99.8%
Related for CVE-2021-33550