Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to event configuration to store malicious code on the server, which could later be triggered by a legitimate user resulting in code execution within the user’s browser.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
|
Geutebrueck
Subscribe
|
G-cam Ebc-2110
Subscribe
G-cam Ebc-2110 Firmware
Subscribe
G-cam Ebc-2111
Subscribe
G-cam Ebc-2111 Firmware
Subscribe
G-cam Efd-2240
Subscribe
G-cam Efd-2240 Firmware
Subscribe
G-cam Efd-2241
Subscribe
G-cam Efd-2241 Firmware
Subscribe
G-cam Efd-2250
Subscribe
G-cam Efd-2250 Firmware
Subscribe
G-cam Ethc-2230
Subscribe
G-cam Ethc-2230 Firmware
Subscribe
G-cam Ethc-2239
Subscribe
G-cam Ethc-2239 Firmware
Subscribe
G-cam Ethc-2240
Subscribe
G-cam Ethc-2240 Firmware
Subscribe
G-cam Ethc-2249
Subscribe
G-cam Ethc-2249 Firmware
Subscribe
G-cam Ewpc-2270
Subscribe
G-cam Ewpc-2270 Firmware
Subscribe
G-code Eec-2400
Subscribe
G-code Eec-2400 Firmware
Subscribe
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
| AND |
|
Configuration 5 [-]
| AND |
|
Configuration 6 [-]
| AND |
|
Configuration 7 [-]
| AND |
|
Configuration 8 [-]
| AND |
|
Configuration 9 [-]
| AND |
|
Configuration 10 [-]
| AND |
|
Configuration 11 [-]
| AND |
|
No data.
No data.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2019-2671 | Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to event configuration to store malicious code on the server, which could later be triggered by a legitimate user resulting in code execution within the user’s browser. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
| Link | Providers |
|---|---|
| https://www.us-cert.gov/ics/advisories/ICSA-19-155-03 |
|
History
No history.
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: icscert
Published:
Updated: 2024-08-04T22:40:15.636Z
Reserved: 2019-04-08T00:00:00
Link: CVE-2019-10957
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-01-17T18:15:12.180
Modified: 2024-11-21T04:20:13.960
Link: CVE-2019-10957
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses