CVE-2017-2871
First published: Tue Apr 17 2018(Updated: )
Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. An attacker who is in the same subnetwork of the camera or has remote administrator access can fully compromise the device by performing a firmware recovery using a custom image.
Credit: talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Foscam C1 Firmware | =2.52.2.43 | |
| Foscam C1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2017-2871?
CVE-2017-2871 is a vulnerability found in the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43 that allows an attacker with remote administrator access to fully compromise the device by performing a firmware recovery.
How severe is CVE-2017-2871?
CVE-2017-2871 has a severity rating of 8.8 (Critical).
What is the affected software for CVE-2017-2871?
The affected software for CVE-2017-2871 is the Foscam C1 Firmware version 2.52.2.43.
How can an attacker exploit CVE-2017-2871?
An attacker who is in the same subnetwork of the camera or has remote administrator access can exploit CVE-2017-2871 by performing a firmware recovery.
Is the Foscam C1 camera vulnerable to CVE-2017-2871?
No, the Foscam C1 camera is not vulnerable to CVE-2017-2871.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/weakness
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/foscam
- canonical/foscam c1 firmware
- version/foscam c1 firmware/2.52.2.43
- canonical/foscam c1