Vulnerabilities > CVE-2021-26614 - Unspecified vulnerability in Iptime C200 Firmware 1.0.12

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
iptime
critical

Summary

ius_get.cgi in IpTime C200 camera allows remote code execution. A remote attacker may send a crafted parameters to the exposed vulnerable web service interface which invokes the arbitrary shell command.

Vulnerable Configurations

Part Description Count
OS
Iptime
1
Hardware
Iptime
1