CVE-2018-0662

Multiple I-O DATA network camera products (TS-WRLP firmware Ver.1.09.04 and earlier, TS-WRLA firmware Ver.1.09.04 and earlier, TS-WRLP/E firmware Ver.1.09.04 and earlier) allow an attacker on the same network segment to add malicious files on the device and execute arbitrary code.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
iodatats-wrlp_firmware
𝑥
≤ 1.09.04
iodatats-wrlp\/e_firmware
𝑥
≤ 1.09.04
iodatats-wrla_firmware
𝑥
≤ 1.09.04
𝑥
= Vulnerable software versions
References
http://jvn.jp/en/jp/JVN83701666/index.html
http://www.iodata.jp/support/information/2018/ts-wrlp/
http://jvn.jp/en/jp/JVN83701666/index.html
http://www.iodata.jp/support/information/2018/ts-wrlp/