CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-2578

cgi-bin/admin/servetest in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the ServerName parameter and (2) other unspecified parameters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.691

EPSS Ranking 98.5%

CVSS Severity

CVSS v2 Score 10.0

References

http://www.coresecurity.com/advisories/multiple-vulnerabilities-tp-link-tl-sc3171-ip-cameras
http://www.coresecurity.com/advisories/multiple-vulnerabilities-tp-link-tl-sc3171-ip-cameras

Products affected by CVE-2013-2578

Tp-Link » Tl-Sc3130 » Version: N/A

cpe:2.3:h:tp-link:tl-sc3130:-
Tp-Link » Tl-Sc3130g » Version: N/A

cpe:2.3:h:tp-link:tl-sc3130g:-
Tp-Link » Tl-Sc3171 » Version: N/A

cpe:2.3:h:tp-link:tl-sc3171:-
Tp-Link » Tl-Sc3171g » Version: N/A

cpe:2.3:h:tp-link:tl-sc3171g:-
Tp-Link » Lm Firmware » Version: 1.6.18p12_sign5

cpe:2.3:o:tp-link:lm_firmware:1.6.18p12_sign5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-2578

Products

Pricing

Contact Us