CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-26762

A stack-based buffer-overflow exists in Edimax IP-Camera IC-3116W (v3.06) and IC-3140W (v3.07), which allows an unauthenticated, unauthorized attacker to perform remote-code-execution due to a crafted GET-Request. The overflow occurs in binary ipcam_cgi due to a missing type check in function doGetSysteminfo(). This has been fixed in version: IC-3116W v3.08.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.044

EPSS Ranking 88.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://www.edimax.com/edimax/download/download/data/edimax/de/download/for_home/home_network_cameras/home_network_cameras_indoor_fixed/ic-3116w
https://www.edimax.com/edimax/download/download/data/edimax/de/download/for_home/home_network_cameras/home_network_cameras_indoor_fixed/ic-3116w

Products affected by CVE-2020-26762

Edimax » Ic-3116w » Version: N/A

cpe:2.3:h:edimax:ic-3116w:-
Edimax » Ic-3140w » Version: N/A

cpe:2.3:h:edimax:ic-3140w:-
Edimax » Ic-3116w Firmware » Version: 3.06

cpe:2.3:o:edimax:ic-3116w_firmware:3.06
Edimax » Ic-3140w Firmware » Version: 3.07

cpe:2.3:o:edimax:ic-3140w_firmware:3.07

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-26762

Products

Pricing

Contact Us