Vendor coverage
Track published CVEs, severity trends, and remediation context for geutebrueck products.
Search results
Showing 1-27 of 27 vulnerabilities.
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the action parameter, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the profile parameter which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the name parameter, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the counter parameter which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to command injection, which may allow an attacker to remotely execute arbitrary code.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
7.2
HIGH
Published
Sep 13, 2021
Multiple camera devices by UDP Technology, Geutebrück and other vendors allow unauthenticated remote access to sensitive files due to default user authentication settings. This can lead to manipulation of the device and denial of service.
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
48 affected product entries
CVSS
9.8
CRITICAL
Published
Sep 13, 2021
Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5).
Affected vendor
geutebrueckAffected product
g-cam ebc-2110 firmwareCoverage
33 affected product entries
CVSS
7.2
HIGH
Published
Aug 14, 2020
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to network configuration to supply system commands to the server, leading to remote code execution as root.
Affected vendor
geutebrueckAffected product
g-code eec-2400 firmwareCoverage
11 affected product entries
CVSS
7.2
HIGH
Published
Jan 17, 2020
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated attacker with access to event configuration to store malicious code on the server, which could later be triggered by a legitimate user resulting in code execution within the user’s browser.
Affected vendor
geutebrueckAffected product
g-code eec-2400 firmwareCoverage
11 affected product entries
CVSS
4.8
MEDIUM
Published
Jan 17, 2020
Geutebruck IP Cameras G-Code(EEC-2xxx), G-Cam(EBC-21xx/EFD-22xx/ETHC-22xx/EWPC-22xx): All versions 1.12.0.25 and prior may allow a remote authenticated user, using a specially crafted URL command, to execute commands as root.
Affected vendor
geutebrueckAffected product
g-code eec-2400 firmwareCoverage
11 affected product entries
CVSS
7.2
HIGH
Published
Jan 17, 2020
In Geutebrueck GmbH E2 Camera Series versions prior to 1.12.0.25 the DDNS configuration (in the Network Configuration panel) is vulnerable to an OS system command injection as root.
Affected vendor
geutebrueckAffected product
g-cam\/efd-2251 firmwareCoverage
2 affected product entries
CVSS
9.8
CRITICAL
Published
Dec 14, 2018
Geutebrueck re_porter 16 before 7.8.974.20 has a possibility of unauthenticated access to sensitive information including usernames and hashes via a direct request for /statistics/gscsetup.xml on TCP port 12003.
Affected vendor
geutebrueckAffected product
re porter 16 firmwareCoverage
Single affected product entry
CVSS
9.8
CRITICAL
Published
Aug 21, 2018
A reflected cross-site scripting vulnerability exists in Geutebrueck re_porter 16 before 7.8.974.20 by appending a query string to /modifychannel/exec or /images/*.png on TCP port 12005.
Affected vendor
geutebrueckAffected product
re porter 16 firmwareCoverage
Single affected product entry
CVSS
6.1
MEDIUM
Published
Aug 21, 2018
Unauthentication vulnerabilities have been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow remote code execution.
Affected vendor
geutebrueckAffected product
g-cam\/efd-2250 firmwareCoverage
2 affected product entries
CVSS
9.8
CRITICAL
Published
Mar 22, 2018
An SQL injection vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow an attacker to alter stored data.
Affected vendor
geutebrueckAffected product
g-cam\/efd-2250 firmwareCoverage
2 affected product entries
CVSS
9.1
CRITICAL
Published
Mar 22, 2018
A cross-site request forgery vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow an unauthorized user to be added to the system.
Affected vendor
geutebrueckAffected product
g-cam\/efd-2250 firmwareCoverage
2 affected product entries
CVSS
8.8
HIGH
Published
Mar 22, 2018
An improper access control vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which could allow a full configuration download, including passwords.
Affected vendor
geutebrueckAffected product
g-cam\/efd-2250 firmwareCoverage
2 affected product entries
CVSS
9.8
CRITICAL
Published
Mar 22, 2018
A server-side request forgery vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which could lead to proxied network scans.
Affected vendor
geutebrueckAffected product
g-cam\/efd-2250 firmwareCoverage
2 affected product entries
CVSS
7.3
HIGH
Published
Mar 22, 2018
A cross-site scripting vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which may allow remote code execution.
Affected vendor
geutebrueckAffected product
g-cam\/efd-2250 firmwareCoverage
2 affected product entries
CVSS
6.1
MEDIUM
Published
Mar 22, 2018
Stack-based buffer overflow in GCoreServer.exe in the server in Geutebrueck Gcore 1.3.8.42 and 1.4.2.37 allows remote attackers to execute arbitrary code via a long URI in a GET request.
CVSS
9.8
CRITICAL
Published
Jul 21, 2017
An Improper Neutralization of Special Elements (in an OS command) issue was discovered in Geutebruck IP Camera G-Cam/EFD-2250 Version 1.11.0.12. An improper neutralization of special elements vulnerability has been identified. If special elements are not properly neutralized, an attacker can call multiple parameters that can allow access to the root level operating system which could allow remote code execution.
Affected vendor
geutebrueckAffected product
ip camera g-cam efd-2250 firmwareCoverage
Single affected product entry
CVSS
9.8
CRITICAL
Published
May 19, 2017
