Back to search
CVE-2018-0661
Published: Sep 7, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
Multiple I-O DATA network camera products (TS-WRLP firmware Ver.1.09.04 and earlier, TS-WRLA firmware Ver.1.09.04 and earlier, TS-WRLP/E firmware Ver.1.09.04 and earlier) allow an attacker on the same network segment to bypass access restriction to add files on a specific directory that may result in executing arbitrary OS commands/code or information including credentials leakage or alteration.
| Vendor | Product | Versions |
|---|---|---|
I-O DATA DEVICE, INC. | Multiple I-O DATA network camera products | affected (TS-WRLP firmware Ver.1.09.04 and earlier, TS-WRLA firmware Ver.1.09.04 and earlier, TS-WRLP/E firmware Ver.1.09.04 and earlier) |
References
http://www.iodata.jp/support/information/2018/ts-wrlp/
x_refsource_CONFIRM
JVN#83701666
third-party-advisory
x_refsource_JVN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now