CVE-2024-7616 | Edimax IC-6220DC/IC-5150W up to 3.06 ipcam_cgi cgiFormString host command injection

Inserito da Angelo Barbosa | Ago 8, 2024 | CVE

A vulnerability was found in Edimax IC-6220DC and IC-5150W up to 3.06. It has been rated as critical. Affected by this issue is the function cgiFormString of the file ipcam_cgi. The manipulation of the argument host leads to command injection.

This vulnerability is handled as CVE-2024-7616. Access to the local network is required for this attack to succeed. There is no exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7616 | Edimax IC-6220DC/IC-5150W up to 3.06 ipcam_cgi cgiFormString host command injection

Post correlati

CVE-2024-32825 | Patrick Posner Simply Static Plugin up to 3.1.3 on WordPress log file

CVE-2023-48796 | Apache DolphinScheduler 3.0.0/3.0.1 information disclosure

CVE-2024-8289 | WooCommerce Multivendor Marketplace Solution Plugin up to 4.2.0 on WordPress authorization

CVE-2024-28088 | LangChain up to 0.1.10 Configuration load_chain path path traversal