CVE-2017-2112

TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE firmware version 1.18 and earlier, TS-WLC2 firmware version 1.18 and earlier, TS-WRLC firmware version 1.17 and earlier, TS-PTCAM firmware version 1.18 and earlier, TS-PTCAM/POE firmware version 1.18 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:iodata:ts-ptcam\/poe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:ts-ptcam\/poe:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:iodata:ts-ptcam_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:ts-ptcam:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:iodata:ts-wrlc_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:ts-wrlc:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:iodata:ts-wlc2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:ts-wlc2:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:iodata:ts-wlce_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:ts-wlce:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:iodata:ts-wptcam2_firmware:1.00:*:*:*:*:*:*:*
cpe:2.3:h:iodata:ts-wptcam2:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:iodata:ts-wptcam_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:iodata:ts-wptcam:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:22

Type Values Removed Values Added
References () http://jvn.jp/en/jp/JVN46830433/index.html - Third Party Advisory, VDB Entry () http://jvn.jp/en/jp/JVN46830433/index.html - Third Party Advisory, VDB Entry
References () http://www.iodata.jp/support/information/2017/camera201702/ - Vendor Advisory () http://www.iodata.jp/support/information/2017/camera201702/ - Vendor Advisory
References () http://www.securityfocus.com/bid/96620 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/96620 - Third Party Advisory, VDB Entry

Information

Published : 2017-04-28 16:59

Updated : 2024-11-21 03:22


NVD link : CVE-2017-2112

Mitre link : CVE-2017-2112

CVE.ORG link : CVE-2017-2112


JSON object : View

Products Affected

iodata

  • ts-wptcam2
  • ts-wptcam2_firmware
  • ts-wptcam_firmware
  • ts-wrlc_firmware
  • ts-ptcam\/poe
  • ts-wlc2
  • ts-wlce
  • ts-ptcam
  • ts-ptcam_firmware
  • ts-wrlc
  • ts-ptcam\/poe_firmware
  • ts-wptcam
  • ts-wlc2_firmware
  • ts-wlce_firmware
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')