Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-10957

EPSS 0.33% · P55
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-10957

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to event configuration to store malicious code on the server, which could later be triggered by a legitimate user resulting in code execution within the user’s browser.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Geutebrück产品跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Geutebrück G-Code EEC-2xxx等都是德国Geutebrück公司的产品。Geutebrück G-Code EEC-2xxx是一款模拟视频编码器模块。Geutebrück G-Cam EBC-21xx是一款EBC-21xx系列网络摄像机。Geutebrück G-Cam EFD-22xx是一款EFD-22xx系列网络摄像机。 多款Geutebrück产品中存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。以下产品及版本受到影响:Geu
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior -

II. Public POCs for CVE-2019-10957

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2019-10957

登录查看更多情报信息。

Same Patch Batch · n/a · 2020-01-17 · 15 CVEs total

CVE-2019-17361SaltStack Salt 命令注入漏洞
CVE-2019-19142Intelbras WRN240 访问控制错误漏洞
CVE-2019-19801Gallagher Command Centre Server 安全漏洞
CVE-2019-19802Gallagher Command Centre Server 信息泄露漏洞
CVE-2019-20003Feldtech easescreen Crystal Web-Services 跨站脚本漏洞
CVE-2019-15855Maarch RM 路径遍历漏洞
CVE-2019-15854Maarch RM 安全漏洞
CVE-2019-17125SolarWinds Orion Platform 跨站脚本漏洞
CVE-2019-17127SolarWinds Orion Platform 跨站脚本漏洞
CVE-2019-10956多款Geutebrück产品操作系统命令注入漏洞
CVE-2019-10958多款Geutebrück产品操作系统命令注入漏洞
CVE-2014-5007ZOHO ManageEngine Desktop Central和Managed Service Providers 代码注入漏洞
CVE-2020-7104WordPress chained-quiz 跨站脚本漏洞
CVE-2020-7222Amcrest Web Server 安全漏洞

IV. Related Vulnerabilities

Same product: Geutebruck IP Cameras
Same vendor: n/a
Same weakness: CWE-79

V. Comments for CVE-2019-10957

No comments yet

Leave a comment