A vulnerability was found in Edimax IC-6220DC and IC-5150W up to 3.06. It has been rated as critical. Affected by this issue is the function cgiFormString of the file ipcam_cgi. The manipulation of the argument host leads to command injection. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
2024-08-12T13:38:45.120
2024-08-13T16:59:39.517
Analyzed
CVSSv3.1: 5.5 (MEDIUM)
AV:A/AC:L/Au:S/C:P/I:P/A:P
5.1
6.4
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | edimax | ic-6220dc_firmware | ≤ 3.06 | Yes |
Hardware | edimax | ic-6220dc | - | No |
Operating System | edimax | ic-5150w_firmware | ≤ 3.06 | Yes |
Hardware | edimax | ic-5150w | - | No |