CVE-2024-8957: PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability
First published: Tue Sep 17 2024(Updated: )
PTZOptics PT30X-SDI/NDI cameras contain an OS command injection vulnerability that allows a remote, authenticated attacker to escalate privileges to root via a crafted payload with the ntp_addr parameter of the /cgi-bin/param.cgi CGI script.
Credit: disclosure@vulncheck.com disclosure@vulncheck.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PTZOptics PT30X-SDI/NDI | ||
| All of | ||
| PTZOptics PT30X-SDI Firmware | <6.3.40 | |
| PTZOptics PT30X-SDI Firmware | ||
| All of | ||
| PTZOptics PT30X-NDI XX G2 | <6.3.40 | |
| PTZOptics PT30X-NDI-XX-G2 Firmware |
Remedy
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.bleepingcomputer.com/news/security/hackers-target-critical-zero-day-vulnerability-in-ptz-cameras/
- https://ptzoptics.com/firmware-changelog/
- https://vulncheck.com/advisories/ptzoptics-command-injection
- https://nvd.nist.gov/vuln/detail/CVE-2024-8957
- https://www.theregister.com/2025/03/03/infosec_in_brief/
Frequently Asked Questions
What is the severity of CVE-2024-8957?
CVE-2024-8957 has a high severity due to its ability to allow remote, authenticated attackers to escalate privileges to root.
How do I fix CVE-2024-8957?
To fix CVE-2024-8957, update the firmware of PTZOptics PT30X-SDI/NDI cameras to a version higher than 6.3.40.
Who is affected by CVE-2024-8957?
CVE-2024-8957 affects users of PTZOptics PT30X-SDI and PT30X-NDI cameras running firmware versions up to and including 6.3.40.
What is the nature of the vulnerability in CVE-2024-8957?
CVE-2024-8957 is an OS command injection vulnerability that can be exploited via the ntp_addr parameter in the /cgi-bin/param.cgi CGI script.
Can CVE-2024-8957 be exploited remotely?
Yes, CVE-2024-8957 can be exploited remotely by authenticated attackers.
- agent/first-publish-date
- agent/type
- agent/severity
- collector/bleeping-computer
- source/BleepingComputer
- alias/CVE-2024-8956
- alias/CVE-2024-8957
- agent/remedy
- agent/description
- agent/author
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/title
- agent/trending
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/source
- agent/references
- agent/event
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- collector/nvd-api
- agent/softwarecombine
- agent/tags
- collector/the-register
- source/The Register
- alias/CVE-2024-53104
- alias/CVE-2024-53197
- alias/CVE-2024-50302
- vendor/ptzoptics
- canonical/ptzoptics pt30x-sdi/ndi
- canonical/ptzoptics pt30x-sdi firmware
- canonical/ptzoptics pt30x-ndi xx g2
- canonical/ptzoptics pt30x-ndi-xx-g2 firmware