Vulnerability Details CVE-2018-19081
An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The ONVIF devicemgmt SetDNS method allows remote attackers to execute arbitrary OS commands via the IPv4Address field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.063
EPSS Ranking 90.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2018-19081
-
cpe:2.3:h:foscam:c2:-
-
cpe:2.3:h:opticam:i5:-
-
cpe:2.3:o:foscam:c2_application_firmware:2.72.1.32
-
cpe:2.3:o:foscam:c2_system_firmware:1.11.1.8
-
cpe:2.3:o:opticam:i5_application_firmware:2.21.1.128
-
cpe:2.3:o:opticam:i5_system_firmware:1.5.2.11