CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-7848

The EFM ipTIME C200 IP Camera is affected by a Command Injection vulnerability in /login.cgi?logout=1 script. To exploit this vulnerability, an attacker can send a GET request that executes arbitrary OS commands via cookie value.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.029

EPSS Ranking 85.6%

CVSS Severity

CVSS v3 Score 8.0

CVSS v2 Score 7.7

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35905
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35905

Products affected by CVE-2020-7848

Iptime » C200 » Version: N/A

cpe:2.3:h:iptime:c200:-
Iptime » C200 Firmware » Version: 1.0.12

cpe:2.3:o:iptime:c200_firmware:1.0.12

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7848

Products

Pricing

Contact Us