CVE-2021-26614

Summary

ius_get.cgi in IpTime C200 camera allows remote code execution. A remote attacker may send a crafted parameters to the exposed vulnerable web service interface which invokes the arbitrary shell command.

Affected Software

VendorProductVersion RangeStatus
EFM networks & multimediaipTIME C200 IP Camera1.058 <= 1.058affected

Weaknesses

  • CWE-749: CWE-749 Exposed Dangerous Method or Function

ADP Enrichment

CVE Program Container

Additional References

References