← back
CVE-2013-2570

CVE-2013-2570

EPSS 26.6%
A Command Injection vulnerability exists in Zavio IP Cameras through 1.6.3 in the General.Time.NTP.Server parameter to the sub_C8C8 function of the binary /opt/cgi/view/param, which could let a remove malicious user execute arbitrary code.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/cve/CVE-2013-2570unverifiedexploitdbwww.exploit-db.com/exploits/25815unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/84567https://packetstormsecurity.com/files/cve/CVE-2013-2570https://www.coresecurity.com/advisories/zavio-ip-cameras-multiple-vulnerabilitieshttp://www.securityfocus.com/bid/60188