A vulnerability was found in Edimax IC-6220DC and IC-5150W up to 3.06. It has been rated as critical. Affected by this issue is the function
cgiFormString
of the file ipcam_cgi. The manipulation of the argument host leads to command injection.
This vulnerability is handled as CVE-2024-7616. Access to the local network is required for this attack to succeed. There is no exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.