CVE-2017-5174

EUVD-2017-14283
An Authentication Bypass issue was discovered in Geutebruck IP Camera G-Cam/EFD-2250 Version 1.11.0.12. An authentication bypass vulnerability has been identified. The existing file system architecture could allow attackers to bypass the access control that may allow remote code execution.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
Affected Products (NVD)
VendorProductVersion
geutebruckip_camera_g-cam_efd-2250_firmware
1.11.0.12
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/96209
https://ics-cert.us-cert.gov/advisories/ICSA-17-045-02
https://www.exploit-db.com/exploits/41360/
http://www.securityfocus.com/bid/96209
https://ics-cert.us-cert.gov/advisories/ICSA-17-045-02
https://www.exploit-db.com/exploits/41360/