Vulnerabilities > Foscam > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-04-21 CVE-2022-28743 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Foscam R2C Application Firmware and R2C System Firmware
Time-of-check Time-of-use (TOCTOU) Race Condition vulerability in Foscam R2C IP camera running System FW <= 1.13.1.6, and Application FW <= 2.91.2.66, allows an authenticated remote attacker with administrator permissions to execute arbitrary remote code via a malicious firmware patch.
network
high complexity
foscam CWE-367
6.6
6.6
2018-11-07 CVE-2018-19080 Cross-site Scripting vulnerability in multiple products
An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128.
network
low complexity
opticam foscam CWE-79
6.1
6.1
2018-11-07 CVE-2018-19075 Information Exposure vulnerability in multiple products
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128.
network
low complexity
opticam foscam CWE-200
5.3
5.3
2018-11-07 CVE-2018-19072 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application Firmware 2.72.1.32, and Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128.
local
low complexity
opticam foscam CWE-732
5.5
5.5
2018-11-07 CVE-2018-19068 An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128.
network
low complexity
opticam foscam
4.9
4.9
2018-09-19 CVE-2017-2879 Classic Buffer Overflow vulnerability in Foscam C1 Firmware 2.52.2.43
An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43.
high complexity
foscam CWE-120
5.3
5.3
2017-06-21 CVE-2017-2829 Path Traversal vulnerability in Foscam C1 Indoor HD Camera Firmware 2.52.2.37
An exploitable directory traversal vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37.
network
low complexity
foscam CWE-22
6.5
6.5