An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can exploit OS Command Injection in the filename parameter for remote code execution as root. This occurs in the Mainproc executable file, which can be run from the HTTPD web server.
Published August 7, 2019.
Microdigital Mdc-n2190v Firmware
Microdigital Mdc-n4090 Firmware
Microdigital Mdc-n4090w Firmware